Unrated severityNVD Advisory· Published May 31, 2002· Updated Apr 16, 2026

CVE-2002-0287

Description

pforum 1.14 and earlier does not explicitly enable PHP magic quotes, which allows remote attackers to bypass authentication and gain administrator privileges via an SQL injection attack when the PHP server is not configured to use magic quotes by default.

Affected products

Powie/Pforum
cpe:2.3:a:powie:pforum:*:*:*:*:*:*:*:*
Range: <=1.14

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.powie.de/news/index.phpnvdPatch
marc.infonvd
www.iss.net/security_center/static/8203.phpnvd
www.securityfocus.com/bid/4114nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000