CVSS: 5.0EPSS: 0%CPEs: 27EXPL: 0CVE-2005-3537
https://notcve.org/view.php?id=CVE-2005-3537
22 Dec 2005 — A "missing request validation" error in phpBB 2 before 2.0.18 allows remote attackers to edit private messages of other users, probably by modifying certain parameters or other inputs. • http://secunia.com/advisories/18098 •
CVSS: 9.8EPSS: 0%CPEs: 27EXPL: 0CVE-2005-3536
https://notcve.org/view.php?id=CVE-2005-3536
22 Dec 2005 — SQL injection vulnerability in phpBB 2 before 2.0.18 allows remote attackers to execute arbitrary SQL commands via the topic type. • http://secunia.com/advisories/18098 •
CVSS: 6.1EPSS: 1%CPEs: 1EXPL: 1CVE-2005-4357
https://notcve.org/view.php?id=CVE-2005-4357
20 Dec 2005 — Cross-site scripting (XSS) vulnerability in phpBB 2.0.18, when "Allowed HTML tags" is enabled, allows remote attackers to inject arbitrary Javascript via a permitted HTML tag with " (quote) characters and active attributes such as onmouseover. • http://marc.info/?l=full-disclosure&m=113484567432679&w=2 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2005-4358
https://notcve.org/view.php?id=CVE-2005-4358
20 Dec 2005 — admin/admin_disallow.php in phpBB 2.0.18 allows remote attackers to obtain the installation path via a direct request with a non-empty setmodules parameter, which causes an invalid append_sid function call that leaks the path in an error message. • http://marc.info/?l=full-disclosure&m=113484567432679&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-4083
https://notcve.org/view.php?id=CVE-2005-4083
08 Dec 2005 — Directory traversal vulnerability in xs_edit.php in the eXtreme Styles phpBB module 2.2.1 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the edit parameter. • http://www.securityfocus.com/archive/1/418518/100/0/threaded •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2005-4084
https://notcve.org/view.php?id=CVE-2005-4084
08 Dec 2005 — xs_edit.php in the phpBB eXtreme Styles module 2.2.1 and earlier allows remote attackers to obtain the installation path of the application via an invalid viewbackup parameter. • http://www.securityfocus.com/archive/1/418518/100/0/threaded •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2005-3799
https://notcve.org/view.php?id=CVE-2005-3799
24 Nov 2005 — phpBB 2.0.18 allows remote attackers to obtain sensitive information via a large SQL query, which generates an error message that reveals SQL syntax or the full installation path. phpBB 2.0.18 permite a atacantes remotos obtener información sensible mediante una consulta SQL grande, lo que genera un mensaje de error que revela la sintaxis SQL de la ruta de instalación completa. • http://marc.info/?l=bugtraq&m=113200740718682&w=2 •
CVSS: 7.5EPSS: 1%CPEs: 27EXPL: 0CVE-2005-3415
https://notcve.org/view.php?id=CVE-2005-3415
01 Nov 2005 — phpBB 2.0.17 and earlier allows remote attackers to bypass protection mechanisms that deregister global variables by setting both a GET/POST/COOKIE (GPC) variable and a GLOBALS[] variable with the same name, which causes phpBB to unset the GLOBALS[] variable but not the GPC variable. • http://marc.info/?l=bugtraq&m=113081113317600&w=2 •
CVSS: 9.8EPSS: 2%CPEs: 27EXPL: 0CVE-2005-3420
https://notcve.org/view.php?id=CVE-2005-3420
01 Nov 2005 — usercp_register.php in phpBB 2.0.17 allows remote attackers to modify regular expressions and execute PHP code via the signature_bbcode_uid parameter, as demonstrated by injecting an "e" modifier into a preg_replace statement. • http://marc.info/?l=bugtraq&m=113081113317600&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 27EXPL: 0CVE-2005-3416
https://notcve.org/view.php?id=CVE-2005-3416
01 Nov 2005 — phpBB 2.0.17 and earlier, when register_globals is enabled and the session_start function has not been called to handle a session, allows remote attackers to bypass security checks by setting the $_SESSION and $HTTP_SESSION_VARS variables to strings instead of arrays, which causes an array_merge function call to fail. • http://marc.info/?l=bugtraq&m=113081113317600&w=2 •