VYPR

Web Forums Server

by Minihttpserver.net

CVEs (2)

  • CVE-2004-1496Dec 31, 2004
    risk 0.00cvss epss 0.01

    Directory traversal vulnerability in Web Forums Server 1.6 and 2.0 Power Pack allows remote attackers to read arbitrary files via a URL containing (1) "..\" (dot dot backslash), (2) "../" (dot dot slash), (3) "/%2E%2E%5C" (encoded dot dot backslash), or (4) "%2E%2E%2F" (encoded…

  • CVE-2004-1497Dec 31, 2004
    risk 0.00cvss epss 0.00

    Web Forums Server 1.6 and 2.0 Power Pack stores passwords in plaintext in the Username.ini file, which allows local users to gain privileges.