FreeBSD Ports: phpbb

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2008-3315

Multiple cross-site scripting XSS vulnerabilities in Claroline 1.8.10 allow remote attackers to inject arbitrary web script or HTML via the 1 query string to a announcements/messages.php; b lostPassword.php and c profile.php in auth/; d calendar/myagenda.php; e group/group.php; f learningPath.php...

CVE-2008-3315

Multiple cross-site scripting XSS vulnerabilities in Claroline 1.8.10 allow remote attackers to inject arbitrary web script or HTML via the 1 query string to a announcements/messages.php; b lostPassword.php and c profile.php in auth/; d calendar/myagenda.php; e group/group.php; f learningPath.php...

CVE-2008-3315

CVE-2008-3315 refers to multiple cross-site scripting (XSS) vulnerabilities in Claroline 1.8.10, exploitable via the query string on numerous files (e.g., announcements/messages.php, lostPassword.php, profile.php in auth/; calendar/myagenda.php; group/group.php; learningPath.; tracking/ ; user/*;...

CVE-2008-3224

Unspecified vulnerability in phpBB before 3.0.1 has unknown impact and attack vectors related to "urls gone through redirect being used within loginbox."...

Design/Logic Flaw

Unspecified vulnerability in phpBB before 3.0.1 has unknown impact and attack vectors related to "urls gone through redirect being used within loginbox."...

CVE-2008-3224

Unspecified vulnerability in phpBB before 3.0.1 has unknown impact and attack vectors related to "urls gone through redirect being used within loginbox."...

CVE-2008-3224

Unspecified vulnerability in phpBB before 3.0.1 has unknown impact and attack vectors related to "urls gone through redirect being used within loginbox."...

CVE-2008-3224

CVE-2008-3224 affects phpBB before 3.0.1. The vulnerability is described as an unspecified issue with the use of redirect() inside login_box(), with unknown impact and attack vectors. The available references (NVD and vendor discussions) do not provide concrete technical details such as exact vul...

phpBB 3.0.2之前版本未明远程漏洞

BUGTRAQ ID: 30222 CNCAN ID：CNCAN-2008071505 phpBB是一款基于PHP的论坛程序。 phpBB存在多个未明问题，远程攻击者可以利用漏洞获得敏感信息等攻击。 目前没有详细漏洞细节提供。 phpBB Group phpBB 3.0.1 phpBB Group phpBB 3.0 phpBB Group phpBB 2.0.22 phpBB Group phpBB 2.0.21 phpBB Group phpBB 2.0.20 phpBB Group phpBB 2.0.19 phpBB Group phpBB 2.0.18 phpBB Group...

phpBB <= 2.0.15 Register Multiple Users Denial of Service (perl code)

No description provided by source. !/usr/bin/perl Name: NsT-phpBBDoS Perl Version Copyright: Neo Security Team Author: HaCkZaTaN Ported: g30rg3x Date: 20/06/05 Description: NsT-phpBB DoS By HackZatan Ported tu perl By g30rg3x A Simple phpBB Registration And Search DoS Flooder...

phpBB < 3.0.1 Multiple Information Disclosure Vulnerabilities

Binary data 4475.prm...

phpBB成员列表搜索及私人消息附件绕过安全限制漏洞

BUGTRAQ ID: 28790 CVECAN ID: CVE-2008-1766 phpBB是非常流行的WEB论坛程序。 phpBB没有对成员列表功能实施充分的访问限制，如果攻击者拥有有效的用户凭据并能够查看成员列表页面的话，就可以通过邮件地址搜索成员列表，这样就通过地址连接到了帐号。 phpBB没有对PM附件功能实施充分的访问限制，如果攻击者拥有有效的用户凭据、可以查看PM系统中的附件并知道附件ID的话，就可以查看其他用户的附件。 phpBB Group phpBB 3.0.0 phpBB Group -----------...

CVE-2008-1766

Multiple unspecified vulnerabilities in phpBB before 3.0.1 have unknown impact and attack vectors, related to "two minor security-related bugs."...

Design/Logic Flaw

Multiple unspecified vulnerabilities in phpBB before 3.0.1 have unknown impact and attack vectors, related to "two minor security-related bugs."...

CVE-2008-1766

Multiple unspecified vulnerabilities in phpBB before 3.0.1 have unknown impact and attack vectors, related to "two minor security-related bugs."...

CVE-2008-1766

Multiple unspecified vulnerabilities in phpBB before 3.0.1 have unknown impact and attack vectors, related to "two minor security-related bugs."...

CVE-2008-1766

phpBB 3.0.x before 3.0.1 contains multiple information-disclosure vulnerabilities, linked to two minor security bugs. An attacker with valid credentials could potentially disclose member emails by searching the member list and access other users’ PM attachments by knowing attachment IDs. A patch ...

phpBB Add-on Fishing Cat Portal Remote File Inclusion Exploit

No description provided by source. html head meta http-equiv="Content-Type" content="text/html; charset=windows-1254" titleFishing Cat Portal Addon functionsportal.php Remote File Inclusion Exploit/title script language="JavaScript" //'Bug found and Exploit coded by bd0rk //'Vendor:...

phpBB Fishing Cat Portal Addon - &#039;functions_portal.php&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/28708/info Fishing Cat Portal Addon for phpBB is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue can allow an attacker to compromise the application and the underlying system...