Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.14 views

Phorum 5.2 versioncheck.php upgrade_available Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/34551/info Phorum is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.14 views

Phorum 3.4 Email Subject Line Script Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7262/info It has been reported that it is possible to inject script code into the subject of a message in Phorum. This may be done by constructing a malicious subject line or other fields before sending an email to the...

6.7AI score
Exploits0
Packet Storm
Packet Stormadded 2006/07/17 12:0 a.m.21 views

phorum5114.txt

Phorum 5.1.14 http://www.phorum.org -------------------------- Cross Site Scripting XSS -------------------------- POST http://target.xx:80/posting.php HTTP/1.0 Accept: / Content-Type: application/x-www-form-urlencoded Host: target.xx Content-Length: 447...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2004/01/09 12:0 a.m.53 views

Multiple Vulnerabilities in Phorum 3.4.5

Phorum 3.4.5 Vulnerabilities ----------------------------- Credit: Author: : Calum Power Versions : = 3.4.5 Vendor : Phorum Vendor URL : http://phorum.org Vendor Contacted: Yes Vendor Fix: Phorum has released Phorum v3.4.6 as a response to this advisory. Please patch your vulnerable software ASAP...

1.5AI score
Exploits0
securityvulns
securityvulnsadded 2003/05/10 12:0 a.m.40 views

A Phorum's bug...

Hi! I have founded a bug in Phorum http://phorum.org/. It is possible to inject script code or other html-tag into "subject", "author's name" or "author's e-mail" of a message in Phorum. In the subject name, e-mail input of message you need to write any html-tag like this:...

Exploits0
NVD
NVDadded 2000/12/31 5:0 a.m.13 views

CVE-2000-1230

Backdoor in auth.php3 in Phorum 3.0.7 allows remote attackers to access restricted web pages via an HTTP request with the PHPAUTHUSER parameter set to "boogieman"...

5CVSS6.7AI score0.1046EPSS
Exploits1References4
securityvulns
securityvulnsadded 2000/11/24 12:0 a.m.53 views

Security problems with Phorum php message board

Author: Brian Moon Homepage: www.phorum.org Version: 3.2.6 Problem: Any user can parse a choosed php script file using the Phorum sustem. It is also possibel, under certain circunstances, to execute arbitrary commands on the server as the httpd user. Status: Fixed in version 3.2.7 released...

0.3AI score
Exploits0
Rows per page
Query Builder