Vulnerabilities > PHP Fusion > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-05 | CVE-2023-2453 | Inclusion of Functionality from Untrusted Control Sphere vulnerability in PHP-Fusion PHPfusion There is insufficient sanitization of tainted file names that are directly concatenated with a path that is subsequently passed to a ‘require_once’ statement. | 8.8 |
| 2023-02-17 | CVE-2021-3172 | Unspecified vulnerability in PHP-Fusion 9.03.90 An issue in Php-Fusion v9.03.90 fixed in v9.10.00 allows authenticated attackers to cause a Distributed Denial of Service via the Polling feature. | 8.1 |
| 2014-11-17 | CVE-2014-8596 | SQL Injection vulnerability in PHP-Fusion 7.02.07 Multiple SQL injection vulnerabilities in PHP-Fusion 7.02.07 allow remote authenticated users to execute arbitrary SQL commands via the (1) submit_id parameter in a 2 action to files/administration/submissions.php or (2) status parameter to files/administration/members.php. | 7.5 |
| 2014-05-05 | CVE-2013-7375 | SQL Injection vulnerability in PHP-Fusion SQL injection vulnerability in includes/classes/Authenticate.class.php in PHP-Fusion 7.02.01 through 7.02.05 allows remote attackers to execute arbitrary SQL commands via the user ID in a user cookie, a different vulnerability than CVE-2013-1803. | 7.5 |
| 2014-05-05 | CVE-2013-1803 | SQL Injection vulnerability in PHP-Fusion Multiple SQL injection vulnerabilities in PHP-Fusion before 7.02.06 allow remote attackers to execute arbitrary SQL commands via the (1) orderby parameter to downloads.php; or remote authenticated users with certain permissions to execute arbitrary SQL commands via a (2) parameter name starting with "delete_attach_" in an edit action to forum/postedit.php; the (3) poll_opts[] parameter in a newthread action to forum/postnewthread.php; the (4) pm_email_notify, (5) pm_save_sent, (6) pm_inbox, (7) pm_sentbox, or (8) pm_savebox parameter to administration/settings_messages.php; the (9) thumb_compression, (10) photo_watermark_text_color1, (11) photo_watermark_text_color2, or (12) photo_watermark_text_color3 parameter to administration/settings_photo.php; the (13) enable parameter to administration/bbcodes.php; the (14) news_image, (15) news_image_t1, or (16) news_image_t2 parameter to administration/news.php; the (17) news_id parameter in an edit action to administration/news.php; or the (18) article_id parameter in an edit action to administration/articles.php. | 7.5 |
| 2011-04-27 | CVE-2010-4791 | SQL Injection vulnerability in Marcusg MG User Fotoalbum Panel 1.0.1 SQL injection vulnerability in infusions/mg_user_fotoalbum_panel/mg_user_fotoalbum.php in the MG User-Fotoalbum (mg_user_fotoalbum_panel) module 1.0.1 for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the album_id parameter. | 7.5 |
| 2010-06-11 | CVE-2009-4889 | SQL Injection vulnerability in Basti2Web Book Panel SQL injection vulnerability in books.php in the Book Panel (book_panel) module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the bookid parameter. | 7.5 |
| 2009-09-09 | CVE-2009-3119 | SQL Injection vulnerability in X-Iweb.Ru Download System MSF SQL injection vulnerability in screen.php in the Download System mSF (dsmsf) module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the view_id parameter. | 7.5 |
| 2009-03-05 | CVE-2009-0832 | SQL Injection vulnerability in Ausimods E-Cart 1.3 SQL injection vulnerability in items.php in the E-Cart module 1.3 for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the CA parameter. | 7.5 |
| 2009-01-22 | CVE-2008-5946 | SQL Injection vulnerability in PHP-Fusion 4.01 SQL injection vulnerability in readmore.php in PHP-Fusion 4.01 allows remote attackers to execute arbitrary SQL commands via the news_id parameter. | 7.5 |