Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
DcscriptsDcforum 2000

3 matches found

CVE
CVEadded 2002/03/09 5:0 a.m.46 views

CVE-2001-0527

DCScripts DCForum versions 2000 and earlier allow a remote attacker to gain additional privileges by inserting pipe symbols (|) and newlines into the last name in the registration form, which will create an extra entry in the registration database.

10CVSS7.2AI score0.04097EPSS
CVE
CVEadded 2001/07/02 4:0 a.m.41 views

CVE-2001-0436

dcboard.cgi in DCForum 2000 1.0 allows remote attackers to execute arbitrary commands by uploading a Perl program to the server and using a .. (dot dot) in the AZ parameter to reference the program.

7.5CVSS7.7AI score0.02032EPSS
CVE
CVEadded 2001/07/02 4:0 a.m.37 views

CVE-2001-0437

upload_file.pl in DCForum 2000 1.0 allows remote attackers to upload arbitrary files without authentication by setting the az parameter to upload_file.

5CVSS7.1AI score0.00765EPSS