RSS   Vulnerabilities for 'Phpmyforum'   RSS

2007-07-31
 
CVE-2007-4107

 

 
SQL injection vulnerability in editpost.php in phpMyForum before 4.1.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: some of these details are obtained from third party information.

 
2006-06-22
 
CVE-2006-3149

 

 
Cross-site scripting (XSS) vulnerability in topic.php in phpMyForum 4.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the highlight parameter.

 
2006-04-11
 
CVE-2006-1714

CWE-Other
 

 
CRLF injection vulnerability in index.php in Christoph Roeder phpMyForum 4.0 allows remote attackers to inject HTTP headers via hex-encoded CRLF sequences in the type parameter.

 
 
CVE-2006-1713

CWE-Other
 

 
Cross-site scripting (XSS) vulnerability in index.php in Christoph Roeder phpMyForum 4.0 allows remote attackers to inject arbitrary web script or HTML via the page parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top