7 matches found
EUVD-2006-4573
Malware in sbrugna...
CVE-2006-4586
The admin panel in Tr Forum 2.0 accepts a username and password hash for authentication, which allows remote authenticated users to perform unauthorized actions, as demonstrated by modifying user settings via the id parameter to /membres/modifprofil.php, and changing a password via...
CVE-2006-4584
Tr Forum 2.0 allows remote attackers to bypass authentication and add an administrative account via the login and password parameters to admin/insertadmin.php...
CVE-2006-4584
Tr Forum 2.0 allows remote attackers to bypass authentication and add an administrative account via the login and password parameters to admin/insertadmin.php...
CVE-2006-4586
The admin panel in Tr Forum 2.0 accepts a username and password hash for authentication, which allows remote authenticated users to perform unauthorized actions, as demonstrated by modifying user settings via the id parameter to /membres/modifprofil.php, and changing a password via...
CVE-2006-4585
The CVE-2006-4585 entry describes an SQL injection in Tr Forum 2.0, specifically in admin/editer.php via the id2 parameter. The vulnerability allows remote authenticated users to execute arbitrary SQL commands, and the note indicates this could be leveraged with other Tr Forum vulnerabilities to ...
CVE-2006-4584
Tr Forum 2.0 is affected by CVE-2006-4584, where remote attackers can bypass authentication and add an administrative account via login and password parameters to admin/insert_admin.php. The vulnerability allows partial confidentiality, integrity, and availability impact (CVSS v2 base score 7.5, ...