Phorum 3.x PHP Configuration Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1985/info Phorum is a PHP based web forums package. Due to an error in the implementation of forum selection in administrative scripts, any user can view the any PHP script on the target host. This is due to user-supplied...

Phorum 3.x profile.php target Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/9882/info It has been reported that Phorum is prone to a cross-site scripting vulnerability across multiple modules. The issue presents itself across multiple modules including 'login.php', 'register.php', and...