CVSS: 9.8EPSS: 0%CPEs: 12EXPL: 3CVE-2006-4673 – PHP-Fusion 6.0.x - 'news.php' SQL Injection
https://notcve.org/view.php?id=CVE-2006-4673
11 Sep 2006 — Global variable overwrite vulnerability in maincore.php in PHP-Fusion 6.01.4 and earlier uses the extract function on the superglobals, which allows remote attackers to conduct SQL injection attacks via the _SERVER[REMOTE_ADDR] parameter to news.php. Vulnerabilidad de sobre escritura de variable global en maincore.php en PHP-Fusion 6.01.4 y anteriores utiliza la función extract sobre super globales, lo que permite a un atacante remoto conducir a ataques de inyección SQL a través del parámetro _SERVER[REMOTE... • https://www.exploit-db.com/exploits/28496 •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3739
https://notcve.org/view.php?id=CVE-2005-3739
22 Nov 2005 — Unspecified vulnerability in subheader.php in PHP-Fusion 6.00.206 and earlier allows remote attackers to obtain the full path via unspecified vectors. Vulnerabilidad no especificada en subheader.php de PHP-Fusion 6.00.206 y anteriores permite a atacantes remotos obtener la ruta completa mediante vectores no especificados. • http://myblog.it-security23.net/advisories/advisory-6.txt •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 2CVE-2005-3740
https://notcve.org/view.php?id=CVE-2005-3740
22 Nov 2005 — Multiple SQL injection vulnerabilities in PHP-Fusion 6.00.206 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the forum_id parameter to options.php or (2) lastvisited parameter to viewforum.php. Múltiples vulnerabilidades de inyección de SQL en PHP-Fusion 6.00.206 y anteriores permiten a atacantes remotos ejecutar comandos SQL de su elección mediante (1) el parámetro "forum_id" de options.php, o (2) el parámetro "lastvisited" de viewforum.php. • http://myblog.it-security23.net/advisories/advisory-6.txt •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 2CVE-2005-3159 – PHP-Fusion 4.0/5.0/6.0 - 'messages.php' SQL Injection
https://notcve.org/view.php?id=CVE-2005-3159
06 Oct 2005 — SQL injection vulnerability in messages.php in PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the msg_view parameter, a different vulnerability than CVE-2005-3157 and CVE-2005-3158. • https://www.exploit-db.com/exploits/26102 •
CVSS: 6.1EPSS: 0%CPEs: 7EXPL: 2CVE-2005-2783 – PHP-Fusion 4.0/5.0/6.0 - BBCode URL Tag Script Injection
https://notcve.org/view.php?id=CVE-2005-2783
02 Sep 2005 — Cross-site scripting (XSS) vulnerability in PHP-Fusion 6.00.107 and earlier allows remote attackers to inject arbitrary web script or HTML via nested, malformed URL BBCode tags. • https://www.exploit-db.com/exploits/26209 •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2005-2401
https://notcve.org/view.php?id=CVE-2005-2401
27 Jul 2005 — PHP-Fusion allows remote attackers to inject arbitrary Cascading Style Sheets (CSS) via the BBCode color tag. PHP-Fusion permite que atacantes remotos inyecten CSS arbitrario mediante el tag de color BBCode. • http://secunia.com/advisories/16096 •
CVSS: 5.3EPSS: 4%CPEs: 1EXPL: 1CVE-2005-0345 – PHP-Fusion 4.0 - 'Viewthread.php' Information Disclosure
https://notcve.org/view.php?id=CVE-2005-0345
10 Feb 2005 — viewthread.php in php-fusion 4.x does not check the (1) forum_id or (2) forum_cat parameters, which allows remote attackers to view protected forums via the thread_id parameter. • https://www.exploit-db.com/exploits/25089 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2004-1723
https://notcve.org/view.php?id=CVE-2004-1723
31 Dec 2004 — The (1) updateuser.php and (2) forums_prune.php scripts in PHP-Fusion 4.00 allow remote attackers to obtain sensitive information via a direct HTTP request, which reveals the installation path in an error message. • http://marc.info/?l=bugtraq&m=109285292901685&w=2 •
CVSS: 9.1EPSS: 3%CPEs: 1EXPL: 2CVE-2004-1724 – PHP-Fusion Database Backup - Information Disclosure
https://notcve.org/view.php?id=CVE-2004-1724
18 Aug 2004 — The ReadMe First.txt file in PHP-Fusion 4.0 instructs users to set the permissions on the fusion_admin/db_backups directory to world read/write/execute (777), which allows remote attackers to download or view database backups, which have easily guessable filenames and contain the administrator username and password. • https://www.exploit-db.com/exploits/24384 •