CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Fipsasp: >> Fipsforum Security Vulnerabilities

CVE-2010-0765

fipsForum 2.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for _database/forumFips.mdb.

CVSS Score

5.0

EPSS Score

0.022

Published

2010-03-02

CVE-2006-6116

SQL injection vulnerability in default2.asp in fipsForum 2.6 and earlier allows remote attackers to execute arbitrary SQL commands via the kat parameter.

CVSS Score

7.5

EPSS Score

0.005

Published

2006-11-26

Page 1

Vulnerabilities

Vulnerable Software

Fipsasp: >> Fipsforum Security Vulnerabilities

Products

Pricing

Contact Us