Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-1441

Malware in sbrugna...

7.5CVSS6.4AI score0.0163EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-1442

Malware in sbrugna...

7.5CVSS6.4AI score0.0163EPSS
Exploits0References6
NVD
NVD
added 2003/06/09 4:0 a.m.14 views

CVE-2002-1460

L-Forum 2.40 and earlier does not properly verify whether a file was uploaded or if the associated variables were set by POST attachment, attachmentname, attachmentsize and attachmenttype, which allows remote attackers to read arbitrary files...

5CVSS6.8AI score0.01913EPSS
Exploits0References5
NVD
NVD
added 2003/06/09 4:0 a.m.13 views

CVE-2002-1458

Cross-site scripting vulnerability in L-Forum 2.40 and earlier, when the "Enable HTML in messages" option is on, allows remote attackers to insert arbitrary script or HTML via message fields including 1 From, 2 E-Mail, 3 Subject and 4 Body...

7.5CVSS6.3AI score0.0163EPSS
Exploits0References4
NVD
NVD
added 2003/06/09 4:0 a.m.16 views

CVE-2002-1459

Cross-site scripting vulnerability in L-Forum 2.40 and earlier, when the "Enable HTML in messages" option is off, allows remote attackers to insert arbitrary script or HTML via message fields including 1 From, 2 E-Mail, and 3 Subject...

7.5CVSS6.3AI score0.0163EPSS
Exploits0References5
Cvelist
Cvelist
added 2003/03/18 5:0 a.m.21 views

CVE-2002-1458

Cross-site scripting vulnerability in L-Forum 2.40 and earlier, when the "Enable HTML in messages" option is on, allows remote attackers to insert arbitrary script or HTML via message fields including 1 From, 2 E-Mail, 3 Subject and 4 Body...

6.3AI score0.0163EPSS
Exploits0References4
Cvelist
Cvelist
added 2003/03/18 5:0 a.m.28 views

CVE-2002-1459

Cross-site scripting vulnerability in L-Forum 2.40 and earlier, when the "Enable HTML in messages" option is off, allows remote attackers to insert arbitrary script or HTML via message fields including 1 From, 2 E-Mail, and 3 Subject...

6.3AI score0.0163EPSS
Exploits0References5
securityvulns
securityvulns
added 2002/08/15 12:0 a.m.25 views

L-Forum Vulnerability - SQL Injection

I have discovered an SQL injection flaw in L-Forum which has a recent record upload spoofing/XSS by Ulf of security bugs. The problem this time is search.php. It doesn't properly escape the SQL data passed in by the user in the search member. I have provided a SourceForge patch for this...

8.2AI score
Exploits0
Exploit DB
Exploit DB
added 2002/08/14 12:0 a.m.38 views

Leszek Krupinski L-Forum 2.4 - Search Script SQL Injection

source: https://www.securityfocus.com/bid/5468/info Reportedly, L-Forum is vulnerable to SQL injection attacks. The vulnerability lies in the file 'search.php' L-Forum does not properly sanitize user input that is used as part of the search parameter in the 'search.php' file. SQL code may be...

7.4AI score
Exploits0
Rows per page
Query Builder