VYPR

Fuzzylime Forum

by Fuzzylime Forum

CVEs (3)

  • CVE-2007-3267Jun 19, 2007
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in low.php in Fuzzylime Forum 1.01b and earlier allows remote attackers to inject arbitrary web script or HTML via the fromaction parameter in a log action, a different vector than CVE-2007-3235.

  • CVE-2007-3234Jun 15, 2007
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in low.php in Fuzzylime Forum 1.0 allows remote attackers to execute arbitrary SQL commands via the topic parameter.

  • CVE-2007-3235Jun 15, 2007
    risk 0.03cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in low.php in Fuzzylime Forum 1.0 allows remote attackers to inject arbitrary web script or HTML via the topic parameter. NOTE: this might be resultant from SQL injection.