Page 9 of 42 results (0.004 seconds)

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

admin_loader.php in PunBB 1.2.1 allows remote attackers to read arbitrary files via the plugin parameter. • http://marc.info/?l=bugtraq&m=110927754230666&w=2 http://secunia.com/advisories/14394 http://www.punbb.org/changelogs/1.2.1_to_1.2.2.txt http://www.punbb.org/download/patch/punbb-1.2.1_to_1.2.2.patch https://exchange.xforce.ibmcloud.com/vulnerabilities/19478 •

CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0

profile.php in PunBB 1.2.1 allows remote attackers to cause a denial of service (account lockout) by setting the user's password to NULL. • http://marc.info/?l=bugtraq&m=110927754230666&w=2 http://secunia.com/advisories/14394 http://www.securityfocus.com/bid/12652 https://exchange.xforce.ibmcloud.com/vulnerabilities/19483 •