Vulnerabilities > Agner FOG > Aforum
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-05-13 | CVE-2007-2634 | Remote Security vulnerability in Agner FOG Aforum 1.32 PHP remote file inclusion vulnerability in common/errormsg.php in aForum 1.32 and possibly earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the header parameter. network agner-fog | 6.8 |
2007-05-11 | CVE-2007-2596 | Remote File Include vulnerability in AForum Func.PHP PHP remote file inclusion vulnerability in common/func.php in aForum 1.32 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CommonAbsDir parameter. | 7.5 |