Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2005-2836

Multiple cross-site scripting (XSS) vulnerabilities in Phorum 5.0.17a and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the username parameter to register.php or (2) a signature of a logged-in user in "My Control Center," which is not properly handled by control.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.5%
CVSS Severity
CVSS v2 Score 4.3
Products affected by CVE-2005-2836
  • Phorum » Phorum » Version: 3.1
    cpe:2.3:a:phorum:phorum:3.1
  • Phorum » Phorum » Version: 3.1.1
    cpe:2.3:a:phorum:phorum:3.1.1
  • Phorum » Phorum » Version: 3.1.1_pre
    cpe:2.3:a:phorum:phorum:3.1.1_pre
  • Phorum » Phorum » Version: 3.1.1_rc2
    cpe:2.3:a:phorum:phorum:3.1.1_rc2
  • Phorum » Phorum » Version: 3.1.1a
    cpe:2.3:a:phorum:phorum:3.1.1a
  • Phorum » Phorum » Version: 3.1.2
    cpe:2.3:a:phorum:phorum:3.1.2
  • Phorum » Phorum » Version: 3.2
    cpe:2.3:a:phorum:phorum:3.2
  • Phorum » Phorum » Version: 3.2.2
    cpe:2.3:a:phorum:phorum:3.2.2
  • Phorum » Phorum » Version: 3.2.3
    cpe:2.3:a:phorum:phorum:3.2.3
  • Phorum » Phorum » Version: 3.2.3a
    cpe:2.3:a:phorum:phorum:3.2.3a
  • Phorum » Phorum » Version: 3.2.3b
    cpe:2.3:a:phorum:phorum:3.2.3b
  • Phorum » Phorum » Version: 3.2.4
    cpe:2.3:a:phorum:phorum:3.2.4
  • Phorum » Phorum » Version: 3.2.5
    cpe:2.3:a:phorum:phorum:3.2.5
  • Phorum » Phorum » Version: 3.2.6
    cpe:2.3:a:phorum:phorum:3.2.6
  • Phorum » Phorum » Version: 3.2.7
    cpe:2.3:a:phorum:phorum:3.2.7
  • Phorum » Phorum » Version: 3.2.8
    cpe:2.3:a:phorum:phorum:3.2.8
  • Phorum » Phorum » Version: 3.3.1
    cpe:2.3:a:phorum:phorum:3.3.1
  • Phorum » Phorum » Version: 3.3.1a
    cpe:2.3:a:phorum:phorum:3.3.1a
  • Phorum » Phorum » Version: 3.3.2
    cpe:2.3:a:phorum:phorum:3.3.2
  • Phorum » Phorum » Version: 3.3.2a
    cpe:2.3:a:phorum:phorum:3.3.2a
  • Phorum » Phorum » Version: 3.3.2b3
    cpe:2.3:a:phorum:phorum:3.3.2b3
  • Phorum » Phorum » Version: 3.4
    cpe:2.3:a:phorum:phorum:3.4
  • Phorum » Phorum » Version: 3.4.1
    cpe:2.3:a:phorum:phorum:3.4.1
  • Phorum » Phorum » Version: 3.4.2
    cpe:2.3:a:phorum:phorum:3.4.2
  • Phorum » Phorum » Version: 3.4.3
    cpe:2.3:a:phorum:phorum:3.4.3
  • Phorum » Phorum » Version: 3.4.4
    cpe:2.3:a:phorum:phorum:3.4.4
  • Phorum » Phorum » Version: 3.4.5
    cpe:2.3:a:phorum:phorum:3.4.5
  • Phorum » Phorum » Version: 3.4.6
    cpe:2.3:a:phorum:phorum:3.4.6
  • Phorum » Phorum » Version: 3.4.7
    cpe:2.3:a:phorum:phorum:3.4.7
  • Phorum » Phorum » Version: 3.4.8
    cpe:2.3:a:phorum:phorum:3.4.8
  • Phorum » Phorum » Version: 4.3.7
    cpe:2.3:a:phorum:phorum:4.3.7
  • Phorum » Phorum » Version: 5.0.10
    cpe:2.3:a:phorum:phorum:5.0.10
  • Phorum » Phorum » Version: 5.0.11
    cpe:2.3:a:phorum:phorum:5.0.11
  • Phorum » Phorum » Version: 5.0.12
    cpe:2.3:a:phorum:phorum:5.0.12
  • Phorum » Phorum » Version: 5.0.14
    cpe:2.3:a:phorum:phorum:5.0.14
  • Phorum » Phorum » Version: 5.0.14a
    cpe:2.3:a:phorum:phorum:5.0.14a
  • Phorum » Phorum » Version: 5.0.15
    cpe:2.3:a:phorum:phorum:5.0.15
  • Phorum » Phorum » Version: 5.0.16
    cpe:2.3:a:phorum:phorum:5.0.16
  • Phorum » Phorum » Version: 5.0.17
    cpe:2.3:a:phorum:phorum:5.0.17
  • Phorum » Phorum » Version: 5.0.3_beta
    cpe:2.3:a:phorum:phorum:5.0.3_beta
  • Phorum » Phorum » Version: 5.0.7_beta
    cpe:2.3:a:phorum:phorum:5.0.7_beta
  • Phorum » Phorum » Version: 5.0.9
    cpe:2.3:a:phorum:phorum:5.0.9


Products
Pricing
Contact Us

Shodan ® - All rights reserved