Shodan
Vulnerabilities
Vulnerable Software
Phorum:  >> Phorum  >> 5.0.14  Security Vulnerabilities
CVE-2005-2836
Multiple cross-site scripting (XSS) vulnerabilities in Phorum 5.0.17a and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the username parameter to register.php or (2) a signature of a logged-in user in "My Control Center," which is not properly handled by control.php.
CVSS Score
4.3
EPSS Score
0.004
Published
2005-09-07
CVE-2005-0783
Cross-site scripting (XSS) vulnerability in Phorum before 5.0.14a allows remote attackers to inject arbitrary web script or HTML via the filename of an attached file.
CVSS Score
4.3
EPSS Score
0.004
Published
2005-05-02
CVE-2005-0784
Multiple cross-site scripting (XSS) vulnerabilities in Phorum before 5.0.15 allow remote attackers to inject arbitrary web script or HTML via (1) the subject line to follow.php or (2) the subject line in the user's personal control panel.
CVSS Score
4.3
EPSS Score
0.004
Published
2005-05-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved