CVE-2005-4529

The CVE-2005-4529 entry concerns the Chatspot 2.0.0a7 module for phpBB. Affects the module by enabling remote attackers to impersonate other users via unknown vectors. The available data assigns a Network attack vector, no authentication, and partial impact on confidentiality, integrity, and avai...

CVE-2005-4529

The Chatspot 2.0.0a7 module for phpBB might allow remote attackers to impersonate other users via unknown vectors...

CVE-2005-4528

CVE-2005-4528 describes an SQL injection vulnerability in the Chatspot 2.0.0a7 module for phpBB, allowing remote attackers to execute arbitrary SQL commands via unknown vectors. The affected component is the Chatspot 2.0.0a7 PHP module integrated with phpBB. The root cause is an injectable SQL co...

phpBB viewtopic.php highlight parameter vulnerability

Added: 12/28/2005 CVE: CVE-2005-2086 BID: 14086 OSVDB: 17613 Background phpBB is an open-source bulletin board package written in PHP. Problem This is a variant of an older vulnerability which allows remote command execution by requesting viewtopic.php with a specially crafted highlight parameter...

phpBB viewtopic.php highlight parameter vulnerability

Added: 12/28/2005 CVE: CVE-2005-2086 BID: 14086 OSVDB: 17613 Background phpBB is an open-source bulletin board package written in PHP. Problem This is a variant of an older vulnerability which allows remote command execution by requesting viewtopic.php with a specially crafted highlight parameter...

phpBB viewtopic.php highlight parameter vulnerability

Added: 12/28/2005 CVE: CVE-2005-2086 BID: 14086 OSVDB: 17613 Background phpBB is an open-source bulletin board package written in PHP. Problem This is a variant of an older vulnerability which allows remote command execution by requesting viewtopic.php with a specially crafted highlight parameter...

phpBB viewtopic.php highlight parameter vulnerability

Added: 12/28/2005 CVE: CVE-2005-2086 BID: 14086 OSVDB: 17613 Background phpBB is an open-source bulletin board package written in PHP. Problem This is a variant of an older vulnerability which allows remote command execution by requesting viewtopic.php with a specially crafted highlight parameter...

phpBB2018.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 phpBB 2.0.18 XSS and Full Path Disclosure cXIb8O3.22 Author: Maksymilian Arciemowicz cXIb8O3 Date: 16.12.2005 from securityreason.com TEAM - --- 0.Description --- phpBB is a high powered, fully scalable, and highly customizable Open Source bulletin...

phpBB <= 2.0.17 (signature_bbcode_uid) Remote Command Exploit

No description provided by source. !/usr/bin/perl phpBB = 2.0.17 remote command execution exploit need for work: 1. PHP 5 5.0.5 2. registerglobals=On 3. magicquotes off ------------------------------------------------ coded by 1dt.w0lf RST/GHC http://rst.void.ru http://ghc.ru 03.11.05 use...

phpBB 2.0.17 - 'signature_bbcode_uid' Remot Command

!/usr/bin/perl phpBB new or die; $cookiejar = HTTP::Cookies-new; for$i=0;$icookiejar $cookiejar ; $res = $xpl-post $path.'profile.php?GLOBALSsignaturebbcodeuid=.%2B/e%00', Content = 'username' = $name, 'email' = $rand.'[email protected]', 'newpassword' = $password, 'passwordconfirm' =...

phpBB Forum program:the old revolution met the new problem-the vulnerability warning-the black bar safety net

phpBB 2.0.18 XSS and Full Path Disclosure Details: SecurityAlert There is a brute force tool, a single thread, there is no useful,it rivals had a what phpbb what also can be used to run the password 下载 :http://ftpzhangxue.w205.100dns.com/tools/phpbb.rar Topic : phpBB 2.0.18 XSS and Full Path...

phpBB <= 2.0.17 (signature_bbcode_uid) Remote Command Exploit

Exploit for unknown platform in category web applications ============================================================= phpBB new or die; $cookiejar = HTTP::Cookies-new; for$i=0;$icookiejar $cookiejar ; $res = $xpl-post $path.'profile.php?GLOBALSsignaturebbcodeuid=.%2B/e%00', Content = 'username'...

phpBB 2.0.17 - signature_bbcode_uid Remot Command

phpBB 2.0.17 - signaturebbcodeuid Remot Command !/usr/bin/perl phpBB new or die; $cookiejar = HTTP::Cookies-new; for$i=0;$icookiejar $cookiejar ; $res = $xpl-post $path.'profile.php?GLOBALSsignaturebbcodeuid=.%2B/e%00', Content = 'username' = $name, 'email' = $rand.'[email protected]',...

CVE-2005-3536

SQL injection vulnerability in phpBB 2 before 2.0.18 allows remote attackers to execute arbitrary SQL commands via the topic type...

CVE-2005-3537

A "missing request validation" error in phpBB 2 before 2.0.18 allows remote attackers to edit private messages of other users, probably by modifying certain parameters or other inputs...

CVE-2005-3536

SQL injection vulnerability in phpBB 2 before 2.0.18 allows remote attackers to execute arbitrary SQL commands via the topic type...

CVE-2005-3537

A "missing request validation" error in phpBB 2 before 2.0.18 allows remote attackers to edit private messages of other users, probably by modifying certain parameters or other inputs...

CVE-2005-3536

SQL injection vulnerability in phpBB 2 before 2.0.18 allows remote attackers to execute arbitrary SQL commands via the topic type...

CVE-2005-3537

A "missing request validation" error in phpBB 2 before 2.0.18 allows remote attackers to edit private messages of other users, probably by modifying certain parameters or other inputs...

CVE-2005-3537

CVE-2005-3537 affects phpBB 2 before 2.0.18, with a missing input/request validation flaw that enables remote attackers to edit private messages of other users by tampering with parameters or inputs. Public records in multiple feeds (NVD, Debian DSA, Red Hat, OpenVAS listings) confirm the vulnera...