SecurityTracker > View Topics > Target

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

View Topics > Target > Phorum

Apr 19 2007	Phorum Input Validation Holes Permits Cross-Site Scripting and SQL Injection Attacks
Mar 23 2005	Phorum Input Validation'search.php' HTTP Response Splitting
Mar 14 2005	Phorum Input Validation Flaws in 'file.php' and 'follow.php' and User Control Panel Permit Cross-Site Scripting Attacks
Nov 11 2004	Phorum Input Validation Hole in 'follow.php' Lets Remote Users Inject SQL Commands
Oct 25 2004	Phorum Input Validation Bugs in 'read.php' Let Remote Users Inject SQL Commands and Conduct Cross-Site Scripting Attacks
Jul 27 2004	Phorum Input Validation Error in 'search.php' Permits Cross-Site Scripting Attacks
May 19 2004	Phorum Sessions Can Be Hijacked By Remote Users
Apr 30 2004	Phorum Input Validation Holes in Several Message Fields Let Remote Users Conduct Cross-Site Scripting Attacks
Apr 18 2004	Phorum Input Validation Hole in 'phorum_uriauth' Lets Remote Users Execute SQL Commands
Mar 15 2004	Phorum HTTP_REFERER and Other Input Validation Flaw Permits Cross-Site Scripting Attacks
Jan 7 2004	Phorum Input Validation Flaw in 'register.php' Permits SQL Injection
Apr 4 2003	(Vendor Issues Fix) Re: Phorum Input Validation Hole in Filtering 'Title' Field Allows Cross-Site Scripting Attacks
Apr 2 2003	Phorum Input Validation Hole in Filtering 'Title' Field Allows Cross-Site Scripting Attacks
May 17 2002	Phorum Bulletin Board Software Has PHP Include Bug in 'plugin.php' Lets Remote Users Execute Arbitrary PHP Code and Shell Commands on the Server
Mar 2 2002	Phorum Bulletin Board Software Discloses the E-mail Addresses of the Ten Most Active Phorum Users to Remote Users
Mar 2 2002	Phorum Bulletin Board Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks and Assume the Identity of Other Phorum Users