Forum Pay Per Post Exchange
by Alstrasoft
CVEs (3)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2008-3954 | 0.03 | — | 0.01 | Sep 11, 2008 | SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showcat action. | ||
| CVE-2008-0440 | 0.03 | — | 0.02 | Jan 23, 2008 | AlstraSoft Forum Pay Per Post Exchange 2.0 stores passwords in cleartext, which makes it easier for attackers to access user accounts. | ||
| CVE-2008-0429 | 0.03 | — | 0.01 | Jan 23, 2008 | SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange 2.0 allows remote attackers to execute arbitrary SQL commands via the catid parameter in a forum_catview action. |