EUVD-2009-3418

Malware in sbrugna...

EUVD-2004-2204

Malware in sbrugna...

EUVD-2005-3304

Malware in sbrugna...

EUVD-2005-4160

Malware in sbrugna...

EUVD-2021-11957

Malware in sbrugna...

EUVD-2006-2976

Malware in sbrugna...

EUVD-2005-3737

Malware in sbrugna...

CVE-2021-25045

The Asgaros Forum WordPress plugin before 1.15.15 does not validate or escape the forumid parameter before using it in a SQL statement when editing a forum, leading to an SQL injection issue...

CVE-2021-25045 Asgaros Forum < 1.15.15 - Admin+ SQL Injection via forum_id

The Asgaros Forum WordPress plugin before 1.15.15 does not validate or escape the forumid parameter before using it in a SQL statement when editing a forum, leading to an SQL injection issue...

Asgaros Forum < 1.15.15 - Admin+ SQL Injection via forum_id

The plugin does not validate or escape the forumid parameter before using it in a SQL statement when editing a forum, leading to an SQL injection issue PoC POST /wp-admin/admin.php?page=asgarosforum-structure HTTP/1.1 Accept:...

Sql injection

Multiple SQL injection vulnerabilities in RunCMS 2M1 allow remote authenticated users to execute arbitrary SQL commands via the 1 forum parameter to modules/forum/post.php and possibly 2 forumid variable to modules/forum/class/class.permissions.php...

MyBulletinBoard (MyBB) &lt;= 1.2.10 Remote Code Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ?php // magicquotesgpc needs to be off errorreporting0; iniset"maxexecutiontime",0; iniset"defaultsockettimeout",5; if $argc5 print "-------------------------------------------------------------------------\r\n"; print " MyBB ...

CVE-2006-2979

Multiple cross-site scripting XSS vulnerabilities in ViArt Shop Free 2.5.5, and possibly other distributions including Light, Standard, and Enterprise, allow remote attackers to inject arbitrary web script or HTML via the 1 forumid parameter in forum.php, which is not properly handled in...

CVE-2006-2979

Multiple cross-site scripting XSS vulnerabilities in ViArt Shop Free 2.5.5, and possibly other distributions including Light, Standard, and Enterprise, allow remote attackers to inject arbitrary web script or HTML via the 1 forumid parameter in forum.php, which is not properly handled in...

CVE-2004-2212

The CVE-2004-2212 entry concerns a SQL injection in AliveSites Forums 2.0. Affected software/component: AliveSites Forums 2.0 (forum.asp). The vulnerability is exposed via the forum_id parameter, allowing remote attackers to execute arbitrary SQL commands. The provided documents confirm the root ...

CVE-2005-0345

CVE-2005-0345 affects php-fusion 4.x where viewthread.php does not validate (1) forum_id or (2) forum_cat parameters, enabling remote attackers to view protected forums by supplying a thread_id. Reported impact is partial confidentiality loss; exploitation appears through crafted thread access ra...

php-fusion 4.x vuln

TheGreatOne2176, Reapercore I have a found an error in php-fusion 4.x where you can view any thread on the forum. In fusionforum/viewthread.php the $GET variables arent properly checked or queried making it possible to view all threads. The example I tested was...

CVE-2004-1518

SQL injection vulnerability in follow.php in Phorum 5.0.12 and earlier allows remote authenticated users to execute arbitrary SQL command via the forumid parameter...