RSS   Podatności dla 'Philboard'   RSS

2008-11-21
 
CVE-2008-5193

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in search.asp in W1L3D4 Philboard 1.14 and 1.2 allows remote attackers to inject arbitrary web script or HTML via the searchterms parameter. NOTE: this might overlap CVE-2007-4024.

 
 
CVE-2008-5192

CWE-89
 

 
SQL injection vulnerability in forum.asp in W1L3D4 Philboard 1.14 and 1.2 allows remote attackers to execute arbitrary SQL commands via the forumid parameter. NOTE: this might overlap CVE-2008-2334, CVE-2008-1939, CVE-2007-2641, or CVE-2007-0920.

 
2007-02-14
 
CVE-2007-0920

 

 
SQL injection vulnerability in philboard_forum.asp in Philboard 1.14 and earlier allows remote attackers to execute arbitrary SQL commands via the forumid parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top