Lucene search
K

147 matches found

Exploit DB
Exploit DB
added 2005/11/02 12:0 a.m.22 views

PHPWebThings 0.4.4 - 'forum.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15276/info phpWebThings is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser...

7.4AI score
Exploits0
NVD
NVD
added 2005/11/01 12:47 p.m.15 views

CVE-2005-3394

Multiple SQL injection vulnerabilities in forum.php in oaboard forum 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 channel parameter in the topics module and 2 topic parameter in the posting module...

7.5CVSS8.5AI score0.0128EPSS
Exploits1References6
CVE
CVE
added 2005/11/01 11:0 a.m.55 views

CVE-2005-3394

/* CVE-2005-3394 */ Summary: Multiple SQL injection vulnerabilities affect the oaboard forum 1.0 in the file/forum logic (forum.php). The two vulnerable parameters are the (1) channel parameter in the topics module and (2) the topic parameter in the posting module. What is affected: oaboard forum...

7.5CVSS8.9AI score0.0128EPSS
Exploits1References6Affected Software1
exploitpack
exploitpack
added 2005/10/31 12:0 a.m.15 views

OaBoard 1.0 - forum.php Multiple SQL Injections

OaBoard 1.0 - forum.php Multiple SQL Injections source: https://www.securityfocus.com/bid/15245/info OaBoard is prone to multiple SQL injection vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2005/10/31 12:0 a.m.27 views

OaBoard 1.0 - 'forum.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/15245/info OaBoard is prone to multiple SQL injection vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the application,...

7.4AI score
Exploits0
UbuntuCve
UbuntuCve
added 2005/08/03 4:0 a.m.28 views

CVE-2005-2430

Multiple cross-site scripting XSS vulnerabilities in GForge 4.5 allow remote attackers to inject arbitrary web script or HTML via the 1 forumid or 2 groupid parameter to forum.php, 3 projecttaskid parameter to task.php, 4 id parameter to detail.php, 5 the text field on the search page, 6 groupid...

4.3CVSS6AI score0.0273EPSS
Exploits0References1
Cvelist
Cvelist
added 2005/02/14 5:0 a.m.21 views

CVE-2005-0413

Multiple SQL injection vulnerabilities in MyPHP Forum 1.0 allow remote attackers to execute arbitrary SQL commands via 1 the fid in forum.php, 2 the member parameter in member.php, 3 the email parameter in forgot.php, or 4 the nbuser or nbpass parameters in include.php. NOTE: it was later reporte...

8.3AI score0.02085EPSS
Exploits1References8
Rows per page
Query Builder