Alstrasoft: >> Forum Pay Per Post Exchange Security Vulnerabilities
SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showcat action.
CVSS Score
7.5
EPSS Score
0.005
Published
2008-09-11
AlstraSoft Forum Pay Per Post Exchange 2.0 stores passwords in cleartext, which makes it easier for attackers to access user accounts.
CVSS Score
5.0
EPSS Score
0.009
Published
2008-01-23
SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange 2.0 allows remote attackers to execute arbitrary SQL commands via the catid parameter in a forum_catview action.
CVSS Score
7.5
EPSS Score
0.01
Published
2008-01-23