Fudforum Security Vulnerabilities and Issues — Fudforum CVE List

Lucene search

Ilia AlshanetskyFudforum

3 matches found

CVE•added 2003/04/11 4:0 a.m.•39 views

CVE-2002-1421

SQL injection vulnerabilities in FUDforum before 2.2.0 allow remote attackers to perform unauthorized database operations via (1) report.php, (2) selmsg.php, and (3) showposts.php.

7.5CVSS8.3AI score0.00734EPSS

CVE•added 2003/04/11 4:0 a.m.•33 views

CVE-2002-1422

admbrowse.php in FUDforum before 2.2.0 allows remote attackers to create or delete files via URL-encoded pathnames in the cur and dest parameters.

5CVSS7.1AI score0.06338EPSS

CVE•added 2003/04/11 4:0 a.m.•31 views

CVE-2002-1423

tmp_view.php in FUDforum before 2.2.0 allows remote attackers to read arbitrary files via an absolute pathname in the file parameter.

5CVSS7.1AI score0.07579EPSS