Vulnerabilities > Phpmyforum
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-07-31 | CVE-2007-4107 | SQL Injection vulnerability in phpMyForum EditPost.PHP SQL injection vulnerability in editpost.php in phpMyForum before 4.1.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
2006-06-22 | CVE-2006-3149 | Cross-Site Scripting vulnerability in PHPmyforum 4.0/4.1/4.1.3 Cross-site scripting (XSS) vulnerability in topic.php in phpMyForum 4.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the highlight parameter. network phpmyforum | 4.3 |
2006-04-11 | CVE-2006-1714 | Cross-Site Scripting vulnerability in PHPmyforum 4.0 CRLF injection vulnerability in index.php in Christoph Roeder phpMyForum 4.0 allows remote attackers to inject HTTP headers via hex-encoded CRLF sequences in the type parameter. | 7.5 |
2006-04-11 | CVE-2006-1713 | Cross-Site Scripting vulnerability in PHPmyforum 4.0 Cross-site scripting (XSS) vulnerability in index.php in Christoph Roeder phpMyForum 4.0 allows remote attackers to inject arbitrary web script or HTML via the page parameter. network phpmyforum | 6.8 |