Vulnerabilities > Phpbb Group > Phpbb > 2.0.18
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-12-20 | CVE-2005-4357 | Cross-Site Scripting vulnerability in PHPbb Group PHPbb 2.0.18 Cross-site scripting (XSS) vulnerability in phpBB 2.0.18, when "Allowed HTML tags" is enabled, allows remote attackers to inject arbitrary Javascript via a permitted HTML tag with " (quote) characters and active attributes such as onmouseover. | 2.6 |
| 2005-11-24 | CVE-2005-3799 | Information Disclosure vulnerability in PHPbb Group PHPbb 2.0.18 phpBB 2.0.18 allows remote attackers to obtain sensitive information via a large SQL query, which generates an error message that reveals SQL syntax or the full installation path. | 5.0 |