60 matches found
CVE-2004-2756
Cross-site scripting XSS vulnerability in viewtopic.php in Xoops 2.x, possibly 2 through 2.0.5, allows remote attackers to inject arbitrary web script or HTML via the 1 forum and 2 topicid parameters...
phpBB viewtopic.php Arbitrary Code Execution
No description provided by source. $Id: phpbbhighlight.rb 9671 2010-07-03 06:21:31Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...
PHPBB 2.0.x Viewtopic.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13345/info phpBB is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script...
Xoops 2.0.x Viewtopic.php Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9497/info It has been reported that Xoops may be prone to a cross-site scripting vulnerability that may allow a remote user to execute HTML or script code in a user's browser. HTML and script code may be parsed via the...
phpBB 2.0.x Viewtopic.PHP PHP Script Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10701/info The 'viewtopic.php' phpBB script is prone to a remote PHP script injection vulnerability because the application fails to properly sanitize user-supplied URI parameters before using them to construct dynamicall...
PHPNuke 6.0/6.5 Forum Module Viewtopic.php SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7193/info It has been reported that an input validation error exists in the 'viewtopic.php' script included with PHPNuke as part of the Forum module. Because of this, an attacker could send a malicious string through...
PhpBB viewtopic.php URL Decoding Code Execution - Ver2 (CVE-2004-1315)
A code execution vulnerability has been reported in phpBB. The vulnerability is due to lack of input validation on the highlight parameter supplied to viewtopic. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause...
phpBB viewtopic.php URL Decoding Code Execution - ver 2 (CVE-2004-1315)
A code injection and execution vulnerability has been reported in phpBB. The vulnerability is due to lack of input validation on the highlight parameter supplied to viewtopic.php. A remote attacker can exploit this issue by injecting malicious SQL code to the target server. Successful exploitatio...
Blizard BB 1.7 SQL Injection Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
CVE-2012-5874
Multiple SQL injection vulnerabilities in the 1 updatewhosonlinereg and 2 updatewhosonlineguest functions in Elite Bulletin Board before 2.1.22 allow remote attackers to execute arbitrary SQL commands via the PATHINFO to a checkuser.php, b groups.php, c index.php, d login.php, e quicklogin.php, f...
CVE-2011-5137
Multiple SQL injection vulnerabilities in tForum b0.915 allow remote attackers to execute arbitrary SQL commands via the 1 TopicID parameter to viewtopic.php, the 2 BoardID parameter to viewboard.php, or 3 CatID parameter to viewcat.php...
CVE-2011-5137
Multiple SQL injection vulnerabilities in tForum b0.915 allow remote attackers to execute arbitrary SQL commands via the 1 TopicID parameter to viewtopic.php, the 2 BoardID parameter to viewboard.php, or 3 CatID parameter to viewcat.php...
phpBB viewtopic.php URL Decoding Code Execution (CVE-2004-1315)
A code injection and execution vulnerability has been reported in phpBB. The vulnerability is due to lack of input validation on the highlight parameter supplied to viewtopic.php. A remote attacker can exploit this issue by injecting malicious SQL code to the target server. Successful exploitatio...
NPDS REvolution Cross Site Scripting
Vulnerability ID: HTB22363 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinnpds.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 29 April 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixe...
Cback V3 Forum Cross Site Scripting
oo Cback v3 forum oo Download: http://www.cback.de/downloads.php Price 79 Eur oo Vendor: www.cback.de oo Author: s4r4d0 oo mail: [email protected] oo Bug: Cross site scripting has benn found on viewtopic.php file oo Exploit: http://host/viewtopic.php?t=Xss oo Demo:...
phpBB viewtopic.php Arbitrary Code Execution
$Id: phpbbhighlight.rb 7724 2009-12-06 05:50:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...
phpbb 2.0.11 viewtopic.php 代码执行漏洞
No description provided by source...
phpbb 2.0.15 viewtopic.php 代码执行漏洞
No description provided by source...
phpbb 2.0.12 viewtopic.php Sql注入漏洞
No description provided by source...
phpBB <2.0.7 viewtopic.php 跨站脚本漏洞
No description provided by source...