Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
DcscriptsDcforum 2000

3 matches found

CVE
CVEadded 2002/03/09 5:0 a.m.56 views

CVE-2001-0527

Affected software: DCScripts DCForum (versions 2000 and earlier). The vulnerability arises from input handling in the registration form: an attacker can insert pipe symbols (|) and newlines into the last name, which creates an extra entry in the registration database and yields additional privile...

10CVSS7.2AI score0.06988EPSS
CVE
CVEadded 2001/05/24 4:0 a.m.50 views

CVE-2001-0436

The vulnerability CVE-2001-0436 affects DCForum 2000, specifically the dcboard.cgi CGI: remote attackers can execute arbitrary commands by uploading a Perl program to the server and referencing it via a .. in the AZ parameter. This is documented in the NVD entry for DCForum 2000 1.0 with a base s...

7.5CVSS7.7AI score0.02032EPSS
CVE
CVEadded 2001/05/24 4:0 a.m.46 views

CVE-2001-0437

CVE-2001-0437 affects DCForum 2000 1.0: the upload_file.pl handler allows remote attackers to upload arbitrary files without authentication by setting the az parameter to upload_file. This enables potential unauthorized file upload and abuse on affected installations. Public references corroborat...

5CVSS7.1AI score0.00765EPSS