Phorum : Security Vulnerabilities, CVEs, Published In 2003 CVSS score >= 7
Multiple "command injection" vulnerabilities in Phorum 3.4 through 3.4.2 allow remote attackers to execute arbitrary commands and modify the Phorum configuration files via the (1) UserAdmin program, (2) Edit user profile, or (3) stats program.
Max CVSS
10.0
EPSS Score
1.18%
Published
2003-12-31
Updated
2017-07-29
Unspecified vulnerability in Phorum 3.4 through 3.4.2 allows remote attackers to use Phorum as a connection proxy to other sites via (1) register.php or (2) login.php.
Max CVSS
7.5
EPSS Score
0.61%
Published
2003-12-31
Updated
2008-09-05
2 vulnerabilities found