Phpbb Group » Phpbb : Security Vulnerabilities, CVEs, Published In 2003 (Sql injection)
SQL injection vulnerability in page_header.php in phpBB 2.0, 2.0.1 and 2.0.2 allows remote attackers to brute force user passwords and possibly gain unauthorized access to forums via the forum_id parameter to index.php.
Max CVSS
7.5
EPSS Score
0.14%
Published
2003-12-31
Updated
2008-09-05
SQL injection vulnerability in search.php for phpBB 2.0.6 and earlier allows remote attackers to execute arbitrary SQL and gain privileges via the search_id parameter.
Max CVSS
7.5
EPSS Score
2.00%
Published
2003-11-27
Updated
2017-07-11
SQL injection vulnerability in groupcp.php for phpBB 2.0.6 and earlier allows group moderators to perform unauthorized activities via the sql_in parameter.
Max CVSS
4.6
EPSS Score
0.06%
Published
2003-12-29
Updated
2017-07-11
SQL injection vulnerability in viewtopic.php for phpBB 2.0.5 and earlier allows remote attackers to steal password hashes via the topic_id parameter.
Max CVSS
5.0
EPSS Score
0.35%
Published
2003-08-07
Updated
2017-07-11
4 vulnerabilities found