Vulnerabilities > Fudforum > Fudforum > 3.1.0

DATE CVE VULNERABILITY TITLE RISK
2022-06-06 CVE-2022-30860 Unrestricted Upload of File with Dangerous Type vulnerability in Fudforum
FUDforum 3.1.2 is vulnerable to Remote Code Execution through Upload File feature of File Administration System in Admin Control Panel.
network
low complexity
fudforum CWE-434
6.5
6.5
2021-03-19 CVE-2021-27520 Cross-site Scripting vulnerability in Fudforum 3.1.0
A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the "author" parameter.
network
fudforum CWE-79
4.3
4.3
2021-03-19 CVE-2021-27519 Cross-site Scripting vulnerability in Fudforum 3.1.0
A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the "srch" parameter.
network
fudforum CWE-79
4.3
4.3