Qt-Cute Quicktalk Forum vulnerabilities
3 known vulnerabilities affecting qt-cute/quicktalk_forum.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2007-3539P3HIGHCVSS 7.5PoCv1.3v1.4+1 more2007-07-03
CVE-2007-3539 [HIGH] CWE-89 CVE-2007-3539: Multiple SQL injection vulnerabilities in QuickTicket 1.2 build:20070621 and QuickTalk Forum 1.3 all
Multiple SQL injection vulnerabilities in QuickTicket 1.2 build:20070621 and QuickTalk Forum 1.3 allow remote attackers to execute arbitrary SQL commands via the (1) t and (2) f parameters in (a) qti_ind_post.php and (b) qti_ind_post_prt.php; (3) dir and (4) order parameters in qti_ind_member.php; (5) id parameter in qti_usr.php; and the (6) f parameter
nvd
CVE-2007-3505P3MEDIUMCVSS 6.4PoCv1.32007-07-02
CVE-2007-3505 [MEDIUM] CVE-2007-3505: Multiple directory traversal vulnerabilities in QuickTalk forum 1.3 allow remote attackers to includ
Multiple directory traversal vulnerabilities in QuickTalk forum 1.3 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) sequence in the lang parameter to (1) qtf_checkname.php, (2) qtf_j_birth.php, or (3) qtf_j_exists.php.
nvd
CVE-2008-1316P3MEDIUMCVSS 6.8PoC≤ 1.6v1.3+2 more2008-03-13
CVE-2008-1316 [MEDIUM] CWE-89 CVE-2008-1316: SQL injection vulnerability in qtf_ind_search_ov.php in QT-cute QuickTalk Forum 1.6 and earlier allo
SQL injection vulnerability in qtf_ind_search_ov.php in QT-cute QuickTalk Forum 1.6 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
nvd