Quicktalk Forum Security Vulnerabilities and Issues — Quicktalk Forum CVE List

Lucene search

Qt-cuteQuicktalk Forum

2 matches found

CVE•added 2007/07/02 7:30 p.m.•45 views

CVE-2007-3505

Multiple directory traversal vulnerabilities in QuickTalk forum 1.3 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) sequence in the lang parameter to (1) qtf_checkname.php, (2) qtf_j_birth.php, or (3) qtf_j_exists.php.

6.4CVSS7.3AI score0.12884EPSS

CVE•added 2007/07/03 8:30 p.m.•45 views

CVE-2007-3539

Multiple SQL injection vulnerabilities in QuickTicket 1.2 build:20070621 and QuickTalk Forum 1.3 allow remote attackers to execute arbitrary SQL commands via the (1) t and (2) f parameters in (a) qti_ind_post.php and (b) qti_ind_post_prt.php; (3) dir and (4) order parameters in qti_ind_member.php; ...

7.5CVSS8.5AI score0.01567EPSS