VYPR
← All vendors
Vendor

Oxygen

Products
4
CVEs
4
Across products
5
Status
Private

Products

4

Recent CVEs

4
  • CVE-2008-2816Jun 23, 2008
    Oxygen
    O2PHP Bulletin Board
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in post.php in Oxygen (aka O2PHP Bulletin Board) 2.0 allows remote attackers to execute arbitrary SQL commands via the repquote parameter in a reply action, a different vector than CVE-2006-1572.

  • CVE-2006-6280Dec 4, 2006
    Oxygen
    O2PHP Bulletin Board
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in viewthread.php in Oxygen (O2PHP Bulletin Board) 1.1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter, a different vector than CVE-2006-1572.

  • CVE-2006-1572Apr 1, 2006
    Oxygen
    Oxygen
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in post.php in Oxygen 1.1.3 allows remote attackers to execute arbitrary SQL commands via the fid parameter in a newthread action.

  • CVE-2023-26559Apr 14, 2023
    Oxygen
    XML Web Author
    risk 0.00cvss epss 0.01

    A directory traversal vulnerability in Oxygen XML Web Author before 25.0.0.3 build 2023021715 and Oxygen Content Fusion before 5.0.3 build 2023022015 allows an attacker to read files from a WEB-INF directory via a crafted HTTP request. (XML Web Author 24.1.0.3 build 2023021714…