Opentools: >> Attachment Mod >> 2.3.9 Security Vulnerabilities
Unknown vulnerability in Attachment Mod before 2.3.13, related to a "serious issue with realnames," has unknown impact and attack vectors.
CVSS Score
7.5
EPSS Score
0.004
Published
2005-05-17
Directory traversal vulnerability in the Attachment module 2.3.10 and earlier for phpBB allows remote attackers to read arbitrary files via a .. (dot dot) in the filename.
CVSS Score
5.0
EPSS Score
0.005
Published
2004-12-31
Attachment Mod 2.3.10 module for phpBB, when used with Apache mod_mime, does not properly handle files with multiple file extensions, such as .php.rar, which allows remote attackers to upload and execute arbitrary code.
CVSS Score
7.5
EPSS Score
0.025
Published
2004-12-31