phpBB - 'viewtopic.php' Arbitrary Code Execution (Metasploit)

$Id: phpbbhighlight.rb 9671 2010-07-03 06:21:31Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

phpBB < 3.0.5 Unspecified Vulnerability

phpBB is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpbb:phpbb"; ifdescription...

Phorum 'feed.php' Security Bypass Vulnerability

This host is running phpBB and is prone to security bypass vulnerability. OpenVAS Vulnerability Test $Id: secpodphpbbsecbypassvuln.nasl 5401 2017-02-23 09:46:07Z teissa $ phpBB 'feed.php' Security Bypass Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010 SecPod, http://www.secpod.com...

phpBB 'posting.php' Unspecified Vulnerability

This host is running phpBB and is prone to unspecified vulnerability. OpenVAS Vulnerability Test $Id: secpodphpbbunspecifiedvuln.nasl 5401 2017-02-23 09:46:07Z teissa $ phpBB 'posting.php' Unspecified Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010 SecPod, http://www.secpod.com Thi...

phpBB 3.0.7 Security Bypass Vulnerability

phpBB is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpbb:phpbb"; ifdescription...

phpBB &lt; 3.0.5 posting.php脚本错误权限检查漏洞

CVECAN ID: CVE-2010-1630 phpBB是非常流行的WEB论坛程序。 phpBB的posting.php脚本在对张贴执行某些操作时没有正确地验证论坛ID，远程攻击者可以绕过预期的安全限制执行非授权操作。 phpBB 3.0.5 厂商补丁： phpBB Group ----------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://code.phpbb.com/repositories/diff/phpbb/branches/phpBB-300/phpBB/posting.php?rev=9499...

phpBB 3.0.7 feed.php脚本错误权限检查漏洞

CVECAN ID: CVE-2010-1627 phpBB是非常流行的WEB论坛程序。 phpBB的feed.php脚本没有正确地检查订阅源的权限，在以下环境中远程攻击者可以绕过权限检查执行非授权操作： 启用了订阅源 启用了张贴或主题源 非授权用户对私人论坛设置了论坛权限 phpBB 3.0.7 厂商补丁： phpBB Group ----------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.phpbb.com/community/viewtopic.php?f=14&t=2014195...

CVE-2010-1630

Unspecified vulnerability in posting.php in phpBB before 3.0.5 has unknown impact and attack vectors related to the use of a "forum id" in circumstances related to a "global announcement."...

Design/Logic Flaw

Unspecified vulnerability in posting.php in phpBB before 3.0.5 has unknown impact and attack vectors related to the use of a "forum id" in circumstances related to a "global announcement."...

CVE-2010-1627

feed.php in phpBB 3.0.7 before 3.0.7-PL1 does not properly check permissions for feeds, which allows remote attackers to bypass intended access restrictions via unspecified attack vectors related to permission settings on a private forum...

CVE-2010-1627

feed.php in phpBB 3.0.7 before 3.0.7-PL1 does not properly check permissions for feeds, which allows remote attackers to bypass intended access restrictions via unspecified attack vectors related to permission settings on a private forum...

CVE-2010-1630

Unspecified vulnerability in posting.php in phpBB before 3.0.5 has unknown impact and attack vectors related to the use of a "forum id" in circumstances related to a "global announcement."...

Design/Logic Flaw

feed.php in phpBB 3.0.7 before 3.0.7-PL1 does not properly check permissions for feeds, which allows remote attackers to bypass intended access restrictions via unspecified attack vectors related to permission settings on a private forum...

CVE-2010-1630

Unspecified vulnerability in posting.php in phpBB before 3.0.5 has unknown impact and attack vectors related to the use of a "forum id" in circumstances related to a "global announcement."...

CVE-2010-1627

feed.php in phpBB 3.0.7 before 3.0.7-PL1 does not properly check permissions for feeds, which allows remote attackers to bypass intended access restrictions via unspecified attack vectors related to permission settings on a private forum...

CVE-2010-1627

CVE-2010-1627 affects phpBB 3.0.7 before 3.0.7-PL1. The vulnerability in feed.php allows remote attackers to bypass feed permission checks and access restrictions on a private forum via unspecified attack vectors related to permission settings. Evidence across sources (NVD, RH, Ubuntu, GHSA) corr...

CVE-2010-1630

CVE-2010-1630 affects phpBB

phpBB modified by Przemo <= 1.12.6p4 Denial Of Service Exploit

Exploit for php platform in category dos / poc ============================================================== phpBB modified by Przemo = 1.12.6p4 Denial Of Service Exploit ============================================================== ?php Exploit Title: phpBB modified by Przemo = 1.12.6p4 Denial...

phpBB modified by Przemo <= 1.12.6p3 Denial Of Service Exploit

Exploit for php platform in category dos / poc ============================================================== phpBB modified by Przemo 1000\n"; echo "-------------------------------------------------------------------------\n"; exit; $u...

openSUSE Security Update : mozilla-xulrunner190 (mozilla-xulrunner190-2261)

This patch updates Mozilla XULRunner 3.0 engine the 1.9.0.19 release. It includes also following security fixes: MFSA 2010-16: Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed eviden...