Phpbb@* Security Vulnerabilities and Issues — Phpbb@* CVE List

Lucene search

PhpbbPhpbb*

5 matches found

CVE•added 2023/11/02 11:15 a.m.•80 views

CVE-2023-5917

A vulnerability, which was classified as problematic, has been found in phpBB up to 3.3.10. This issue affects the function main of the file phpBB/includes/acp/acp_icons.php of the component Smiley Pack Handler. The manipulation of the argument pak leads to cross site scripting. The attack may be i...

6.1CVSS4.7AI score0.00086EPSS

Web

CVE•added 2007/10/03 2:17 p.m.•79 views

CVE-2007-5173

PHP remote file inclusion vulnerability in includes/openid/Auth/OpenID/BBStore.php in phpBB Openid 0.2.0 allows remote attackers to execute arbitrary PHP code via a URL in the openid_root_path parameter.

6.8CVSS7.5AI score0.01652EPSS

Web

CVE•added 2019/11/14 12:15 a.m.•53 views

CVE-2011-0544

phpbb 3.0.x-3.0.6 has an XSS vulnerability via the [flash] BB tag.

6.1CVSS6AI score0.00339EPSS

CVE•added 2017/09/19 3:29 p.m.•48 views

CVE-2015-3880

Open redirect vulnerability in phpBB before 3.0.14 and 3.1.x before 3.1.4 allows remote attackers to redirect users of Google Chrome to arbitrary web sites and conduct phishing attacks via unspecified vectors.

6.1CVSS6AI score0.00713EPSS

CVE•added 2015/02/10 5:59 p.m.•33 views

CVE-2015-1432

The message_options function in includes/ucp/ucp_pm_options.php in phpBB before 3.0.13 does not properly validate the form key, which allows remote attackers to conduct CSRF attacks and change the full folder setting via unspecified vectors.

6.8CVSS6.8AI score0.00508EPSS

Web