SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   


View Topics  >  Vendor  >  Phorum.org

Apr 19 2007   Phorum Input Validation Holes Permits Cross-Site Scripting and SQL Injection Attacks
Mar 23 2005   Phorum Input Validation'search.php' HTTP Response Splitting
Mar 14 2005   Phorum Input Validation Flaws in 'file.php' and 'follow.php' and User Control Panel Permit Cross-Site Scripting Attacks
Nov 11 2004   Phorum Input Validation Hole in 'follow.php' Lets Remote Users Inject SQL Commands
Oct 25 2004   Phorum Input Validation Bugs in 'read.php' Let Remote Users Inject SQL Commands and Conduct Cross-Site Scripting Attacks
Jul 27 2004   Phorum Input Validation Error in 'search.php' Permits Cross-Site Scripting Attacks
May 19 2004   Phorum Sessions Can Be Hijacked By Remote Users
Apr 30 2004   Phorum Input Validation Holes in Several Message Fields Let Remote Users Conduct Cross-Site Scripting Attacks
Apr 18 2004   Phorum Input Validation Hole in 'phorum_uriauth' Lets Remote Users Execute SQL Commands
Mar 15 2004   Phorum HTTP_REFERER and Other Input Validation Flaw Permits Cross-Site Scripting Attacks
Jan 7 2004   Phorum Input Validation Flaw in 'register.php' Permits SQL Injection
Apr 4 2003   (Vendor Issues Fix) Re: Phorum Input Validation Hole in Filtering 'Title' Field Allows Cross-Site Scripting Attacks
Apr 2 2003   Phorum Input Validation Hole in Filtering 'Title' Field Allows Cross-Site Scripting Attacks
May 17 2002   Phorum Bulletin Board Software Has PHP Include Bug in 'plugin.php' Lets Remote Users Execute Arbitrary PHP Code and Shell Commands on the Server
Mar 2 2002   Phorum Bulletin Board Software Discloses the E-mail Addresses of the Ten Most Active Phorum Users to Remote Users
Mar 2 2002   Phorum Bulletin Board Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks and Assume the Identity of Other Phorum Users







Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC