VYPR

Forum Pay Per Post Exchange

by Alstrasoft

CVEs (3)

  • CVE-2008-3954Sep 11, 2008
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showcat action.

  • CVE-2008-0440Jan 23, 2008
    risk 0.03cvss epss 0.02

    AlstraSoft Forum Pay Per Post Exchange 2.0 stores passwords in cleartext, which makes it easier for attackers to access user accounts.

  • CVE-2008-0429Jan 23, 2008
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange 2.0 allows remote attackers to execute arbitrary SQL commands via the catid parameter in a forum_catview action.