2 results (0.002 seconds)

CVSS: 5.0EPSS: 0%CPEs: 6EXPL: 1

PHP-Post allows remote attackers to spoof the names of other users by registering with a username containing hex-encoded characters. • http://www.securityfocus.com/archive/1/393695 http://www.securityfocus.com/bid/12845 •

CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0

Cross-site scripting (XSS) vulnerability in PHP-Post before 0.33 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. • http://www.php-post.co.uk/index.php?s=content&p=download http://www.securityfocus.com/bid/12845 •