2 matches found
CVE-2009-4383
The vulnerability concerns P forum (Rocomotion) before version 1.28, specifically in Pforum.php. It is a directory traversal flaw that could allow a remote attacker to read arbitrary files on the server via directory traversal sequences. The root cause is not explicitly detailed beyond the traver...
CVE-2010-3931
The CVE-2010-3931 entry corresponds to a cross-site scripting (XSS) vulnerability in multiple Rocomotion products (e.g., P board, P forum, P up board, P diary R, P link, pplog/pplog2, PM bbs/PM forum) across listed versions (e.g., P board 1.18 and earlier, P forum 1.30 and earlier, P up board 1.3...