Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Packet Storm
Packet Stormadded 2009/03/05 12:0 a.m.28 views

PHPBB 2.0.22 XSRF Exploit

Author: Dante90, WaRWolFz Crew Title: Exploit PhpBB = 2.0.22 Add User In A Group SWF Version By Dante90 0-Day Proof Of Concept: PhpBB 2.0.22 = CSRF Add user In Group By Vincy Change: ByPass HTTPREFERER Protection. MSN: [email protected] Web: www.warwolfz.org Exploit PhpBB = 2.0.22 Add User ...

0.2AI score
Exploits0
NVD
NVDadded 2008/01/29 8:0 p.m.9 views

CVE-2008-0471

Cross-site request forgery CSRF vulnerability in privmsg.php in phpBB 2.0.22 allows remote attackers to delete private messages PM as arbitrary users via a deleteall action...

4.3CVSS6.8AI score0.00259EPSS
Exploits0References6
CVE
CVEadded 2008/01/29 7:0 p.m.41 views

CVE-2008-0471

CVE-2008-0471 concerns phpBB 2.0.22 where a CSRF flaw in privmsg.php enables an attacker to delete a user’s private messages via a crafted request (deleteall). Public sources confirm the vulnerability in phpBB2 and note remediation through Debian updates (DSA-1488-1) and corresponding fixes in si...

4.3CVSS6.7AI score0.00259EPSS
Exploits0References6Affected Software1
Packet Storm
Packet Stormadded 2008/01/25 12:0 a.m.16 views

phpbb2022-xsrf.txt

phpBB 2.0.22 Remote PM Delete XSRF Vulnerability by NBBN Type: Cross-Site Request Forgery Founded: December 2007 An attacker can send a link via pm to a site with the follow html code to a victim and all victim's pm's are going to be deleted when he click the link. Code Vuln Versions: I've tested...

7.4AI score
Exploits0
NVD
NVDadded 2007/09/04 10:17 p.m.8 views

CVE-2007-4653

SQL injection vulnerability in links.php in the Links MOD 1.2.2 and earlier for phpBB 2.0.22 and earlier allows remote attackers to execute arbitrary SQL commands via the start parameter in a search action...

7.5CVSS8.4AI score0.00212EPSS
Exploits0References3
Prion
Prionadded 2007/09/04 10:17 p.m.8 views

Sql injection

SQL injection vulnerability in links.php in the Links MOD 1.2.2 and earlier for phpBB 2.0.22 and earlier allows remote attackers to execute arbitrary SQL commands via the start parameter in a search action...

7.5CVSS9.1AI score0.00212EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2007/09/04 10:0 p.m.43 views

CVE-2007-4653

CVE-2007-4653 is a SQL injection vulnerability in links.php from the Links MOD (≤1.2.2) used with phpBB ≤2.0.22. The flaw allows remote attackers to modify the start parameter in a search action and execute arbitrary SQL commands. The vulnerability affects the specified combinations (Links MOD ≤1...

7.5CVSS8.4AI score0.00212EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2007/09/04 10:0 p.m.15 views

CVE-2007-4653

SQL injection vulnerability in links.php in the Links MOD 1.2.2 and earlier for phpBB 2.0.22 and earlier allows remote attackers to execute arbitrary SQL commands via the start parameter in a search action...

8.4AI score0.00212EPSS
Exploits0References3
0day.today
0day.todayadded 2007/08/31 12:0 a.m.26 views

phpBB Links MOD 1.2.2 Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================== phpBB Links MOD 1.2.2 Remote SQL Injection Exploit ================================================== !/usr/bin/perl print q phpBB Insert URL = without http = ; $server = ; chop $server;...

7.1AI score
Exploits0
Rows per page
Query Builder