Forum Pay Per Post Exchange
by Alstrasoft
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2008-3954 | 0.03 | — | 0.01 | Sep 11, 2008 | SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showcat action. | |||
| CVE-2008-0440 | 0.03 | — | 0.02 | Jan 23, 2008 | AlstraSoft Forum Pay Per Post Exchange 2.0 stores passwords in cleartext, which makes it easier for attackers to access user accounts. | |||
| CVE-2008-0429 | 0.03 | — | 0.01 | Jan 23, 2008 | SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange 2.0 allows remote attackers to execute arbitrary SQL commands via the catid parameter in a forum_catview action. |
- CVE-2008-3954Sep 11, 2008risk 0.03cvss —epss 0.01
SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showcat action.
- CVE-2008-0440Jan 23, 2008risk 0.03cvss —epss 0.02
AlstraSoft Forum Pay Per Post Exchange 2.0 stores passwords in cleartext, which makes it easier for attackers to access user accounts.
- CVE-2008-0429Jan 23, 2008risk 0.03cvss —epss 0.01
SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange 2.0 allows remote attackers to execute arbitrary SQL commands via the catid parameter in a forum_catview action.