Aspindir Husrevforum vulnerabilities
2 known vulnerabilities affecting aspindir/husrevforum.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2007-3884P3HIGHCVSS 7.5PoCv1.0.1v2.0.12007-07-18
CVE-2007-3884 [HIGH] CWE-89 CVE-2007-3884: SQL injection vulnerability in philboard_forum.asp in husrevforum 1.0.1 allows remote attackers to e
SQL injection vulnerability in philboard_forum.asp in husrevforum 1.0.1 allows remote attackers to execute arbitrary SQL commands via the forumid parameter. NOTE: it was later reported that 2.0.1 is also affected.
nvd
CVE-2007-3885P4MEDIUMCVSS 4.3v1.0.12007-07-18
CVE-2007-3885 [MEDIUM] CVE-2007-3885: Cross-site scripting (XSS) vulnerability in philboard_search.asp in husrevforum 1.0.1 allows remote
Cross-site scripting (XSS) vulnerability in philboard_search.asp in husrevforum 1.0.1 allows remote attackers to inject arbitrary web script or HTML via the searchterms parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
nvd