2Enetworx Openforum vulnerabilities
2 known vulnerabilities affecting 2enetworx/openforum.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-7066P3HIGHCVSS 7.5PoCv0.662009-08-25
CVE-2008-7066 [HIGH] CWE-264 CVE-2008-7066: OpenForum 0.66 Beta allows remote attackers to bypass authentication and reset passwords of other us
OpenForum 0.66 Beta allows remote attackers to bypass authentication and reset passwords of other users via a direct request with the update parameter set to 1 and modified user and password parameters.
nvd
CVE-2006-3321P4MEDIUMCVSS 4.3≤ 1.2_beta2006-06-30
CVE-2006-3321 [MEDIUM] CVE-2006-3321: Multiple cross-site scripting (XSS) vulnerabilities in openforum.asp in OpenForum 1.2 Beta and earli
Multiple cross-site scripting (XSS) vulnerabilities in openforum.asp in OpenForum 1.2 Beta and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ofdisp and (2) ofmsgid parameters.
nvd