CVE-2003-1487
Phorum 3.4 through 3.4.2 contains multiple remote command-injection vulnerabilities that allow arbitrary command execution and modification of Phorum configuration files via the (1) UserAdmin program, (2) Edit user profile, or (3) stats program. The root cause is not explicitly detailed beyond th...