Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Flat PhpBoard

3 matches found

CVE
CVEadded 2007/12/17 6:0 p.m.49 views

CVE-2007-6395

Flat PHP Board 1.2 and earlier stores credentials under the web root with insufficient access control. The vulnerability allows remote attackers to obtain credentials by directly requesting the username.php file for any user account in users/. The CVE is documented with an access-control bypass i...

5CVSS6.4AI score0.06243EPSS
CVE
CVEadded 2007/12/17 6:0 p.m.46 views

CVE-2007-6397

CVE-2007-6397 affects Flat PHP Board 1.2 and earlier. The vulnerability arises from directory traversal in index.php, enabling remote attackers to (1) create arbitrary files via .. in the username during user registration, and (2) read arbitrary PHP files via .. in (a) the topic parameter for a t...

5CVSS7AI score0.02798EPSS
CVE
CVEadded 2007/12/17 6:0 p.m.45 views

CVE-2007-6398

CVE-2007-6398 affects Flat PHP Board 1.2 and earlier. The issue allows remote attackers to bypass authentication and obtain limited access to an arbitrary user account by manipulating the fpb_username cookie. The description, as reported in multiple sources (NVD/NVT CVE entry and related database...

5CVSS7.2AI score0.02447EPSS