Categories

Applications (222)
Blogs (7)
Content Management (148)
Customer Relationship (2)
Discussion Boards (29)
E-Commerce (14)
General Purpose Directories (2)
Image Galleries (18)
Mailing Lists (1)
Tips (3)
Vulnerabilities (337)
Access Bypass (50)
Cross Site Scripting (123)
Denial Of Service (2)
File Inclusion (51)
Information Disclosure (15)
Privilege Escalation (2)
Remote Command Execution (16)
Session Hijacking (2)
SQL Injection (130)
« PHP-Nuke Multiple Vulnerabilities
Exponent CMS Information Disclosure »

Phorum Multiple Vulnerabilities

Published by CS Lee April 23rd, 2007 in Access Bypass, Cross Site Scripting and SQL Injection.

Application: Phorum
Version: Prior 5.1.22
Vendor’s URL: http://www.phorum.org/
Bug Type: Cross site attacks and Sql injections
Risk Level: High

Solution:
- Update to version 5.1.22
- Turn off registered_globals

0 Responses to “Phorum Multiple Vulnerabilities”

Feed for this Entry Trackback Address
  1. No Comments

Leave a Reply

You must login to post a comment.

« PHP-Nuke Multiple Vulnerabilities
Exponent CMS Information Disclosure »

Subscribe

Latest

Archives



Valid XHTML 1.0 Transitional