Show filters
35 Total Results
Displaying 31-35 of 35
Sort by:
Attacker Value
Unknown

CVE-2004-2055

Disclosure Date: July 19, 2004 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in search.php for PhpBB 2.0.4 and 2.0.9 allows remote attackers to inject arbitrary HTMl or web script via the search_author parameter.
0
0
Attacker Value
Unknown

CVE-2004-1943

Disclosure Date: April 19, 2004 (last updated February 22, 2025)
PHP remote file inclusion vulnerability in album_portal.php in phpBB modified by Przemo 1.8 allows remote attackers to execute arbitrary PHP code via the phpbb_root_path parameter.
0
0
Attacker Value
Unknown

CVE-2004-1950

Disclosure Date: April 19, 2004 (last updated February 22, 2025)
phpBB 2.0.8a and earlier trusts the IP address that is in the X-Forwarded-For in the HTTP header, which allows remote attackers to spoof IP addresses.
0
0
Attacker Value
Unknown

CVE-2003-1215

Disclosure Date: December 29, 2003 (last updated February 22, 2025)
SQL injection vulnerability in groupcp.php for phpBB 2.0.6 and earlier allows group moderators to perform unauthorized activities via the sql_in parameter.
0
0
Attacker Value
Unknown

CVE-2003-1216

Disclosure Date: November 27, 2003 (last updated February 22, 2025)
SQL injection vulnerability in search.php for phpBB 2.0.6 and earlier allows remote attackers to execute arbitrary SQL and gain privileges via the search_id parameter.
0
0
View More Topics  < Previous