Vulnerabilities > Crosscom Olicom > Discuz
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-08-17 | CVE-2005-2614 | Unspecified vulnerability in Crosscom Olicom Discuz Discuz! 4.0 rc4 does not properly restrict types of files that are uploaded to the server, which allows remote attackers to execute arbitrary commands via a filename containing ".php.rar" or other multiple extensions that include .php. | 7.5 |
2004-11-23 | CVE-2004-0254 | Cross-Site Scripting vulnerability in Crosscom Olicom Discuz 2.0/3.0 Cross-site scripting (XSS) vulnerability in Discuz! Board 2.x and 3.x allows remote attackers to execute arbitrary script as other users via an img tag. network crosscom-olicom | 6.8 |