Phpbb@2.0.8a Security Vulnerabilities and Issues — Phpbb@2.0.8a CVE List

Lucene search

Phpbb GroupPhpbb2.0.8a

3 matches found

CVE•added 2004/12/31 5:0 a.m.•177 views

CVE-2004-1315

viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the highlight parameter when extracting words and phrases to highlight, which allows remote attackers to execute arbitrary PHP code by double-encoding the highlight value so that special characters are inserted into the result, which i...

7.5CVSS7.2AI score0.85909EPSS

CVE•added 2004/07/27 4:0 a.m.•38 views

CVE-2004-0730

Multiple cross-site scripting (XSS) vulnerabilities in PhpBB 2.0.8 allow remote attackers to inject arbitrary web script or HTML via (1) the cat_title parameter in index.php, (2) the faq[0][0] parameter in lang_faq.php as accessible from faq.php, or (3) the faq[0][0] parameter in lang_bbcode.php as...

6.8CVSS5.8AI score0.01631EPSS

CVE•added 2004/07/27 4:0 a.m.•36 views

CVE-2004-0729

PhpBB 2.0.8 allows remote attackers to gain sensitive information via an invalid (1) category_rows parameter to index.php, (2) faq parameter to faq.php, or (3) ranksrow parameter to profile.php, which reveal the full path in an error message.

5CVSS6.9AI score0.00483EPSS