Vulnerabilities > Postnuke Software Foundation > Pnphpbb
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-06-06 | CVE-2007-3052 | SQL Injection vulnerability in PostNuke PNPHPBB2 Module SQL injection vulnerability in index.php in the PNphpBB2 1.2i and earlier module for PostNuke allows remote attackers to execute arbitrary SQL commands via the c parameter. | 7.5 |
2006-09-25 | CVE-2006-4968 | Remote File Include vulnerability in Postnuke Software Foundation Pnphpbb 1.2G PHP remote file inclusion vulnerability in includes/functions_admin.php in PNphpBB 1.2g allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. | 7.5 |