ByteOS Network

pnphpbb

Source -

NVD

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

3Vulnerabilities found

CVE-2007-6624

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-6.8||MEDIUM

EPSS-2.47% / 84.66%

7 Day CHG~0.00%

Published-04 Jan, 2008 | 00:00

Updated-07 Aug, 2024 | 16:11

Directory traversal vulnerability in printview.php in PNphpBB2 1.2i and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the phpEx parameter.

Vendor-pnphpbb n/a

Product-pnphpbb n/a

CWE ID-CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CVE-2007-3052

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-7.5||HIGH

EPSS-1.05% / 76.62%

7 Day CHG~0.00%

Published-06 Jun, 2007 | 01:00

Updated-07 Aug, 2024 | 14:05

SQL injection vulnerability in index.php in the PNphpBB2 1.2i and earlier module for PostNuke allows remote attackers to execute arbitrary SQL commands via the c parameter.

Vendor-postnuke_software_foundation n/a

Product-pnphpbb n/a

CVE-2006-4968

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-7.5||HIGH

EPSS-6.98% / 91.07%

7 Day CHG~0.00%

Published-25 Sep, 2006 | 01:00

Updated-03 Apr, 2025 | 01:03

PHP remote file inclusion vulnerability in includes/functions_admin.php in PNphpBB 1.2g allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.

Vendor-postnuke_software_foundation n/a

Product-pnphpbb n/a