EUVD-2011-5038

Malware in sbrugna...

CVE-2011-5138

Cross-site scripting XSS vulnerability in member.php in tForum b0.915 allows remote attackers to inject arbitrary web script or HTML via the username parameter in a viewprofile action...

CVE-2011-5138

Cross-site scripting XSS vulnerability in member.php in tForum b0.915 allows remote attackers to inject arbitrary web script or HTML via the username parameter in a viewprofile action...

CVE-2009-1277

SQL injection vulnerability in index.php in Gravity Board X GBX 2.0 BETA allows remote attackers to execute arbitrary SQL commands via the memberid parameter in a viewprofile action. NOTE: the boardid issue is already covered by CVE-2008-2996.2...

Sql injection

SQL injection vulnerability in index.php in Gravity Board X GBX 2.0 BETA allows remote attackers to execute arbitrary SQL commands via the memberid parameter in a viewprofile action. NOTE: the boardid issue is already covered by CVE-2008-2996.2...

Sql injection

SQL injection vulnerability in inc/pages/viewprofile.php in phpSmartCom 0.2 allows remote attackers to execute arbitrary SQL commands via the uid parameter in a viewprofile action to index.php...

Directory traversal

Multiple directory traversal vulnerabilities in index.php in Flat PHP Board 1.2 and earlier allow remote attackers to 1 create arbitrary files via a .. dot dot in the username parameter when registering a user account, and 2 read arbitrary PHP files via a .. dot dot in a the topic parameter in a...

CVE-2007-6397

Multiple directory traversal vulnerabilities in index.php in Flat PHP Board 1.2 and earlier allow remote attackers to 1 create arbitrary files via a .. dot dot in the username parameter when registering a user account, and 2 read arbitrary PHP files via a .. dot dot in a the topic parameter in a...

CVE-2006-3275

SQL injection vulnerability in profile.php in YaBB SE 1.5.5 and earlier allows remote attackers to execute SQL commands via a double-encoded user parameter in a viewprofile action...