CPE-3D5AC8F3-CA3E-4BB1-8A6E-DC5F98377204 Detail

CPE Details

phpBB 3.2.4

Vendor

phpbb

Product

phpbb

Version

3.2.4

Created

2019-10-16
16h28 +00:00

Modified

2019-10-16
16h28 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:phpbb:phpbb:3.2.4:-::::::

Informations

Vendor

phpbb

Product

phpbb

Version

3.2.4

Update

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2023-5917	2023-11-02 10h31 +00:00	A vulnerability, which was classified as problematic, has been found in phpBB up to 3.3.10. This issue affects the function main of the file phpBB/includes/acp/acp_icons.php of the component Smiley Pack Handler. The manipulation of the argument pak leads to cross site scripting. The attack may be initiated remotely. Upgrading to version 3.3.11 is able to address this issue. The patch is named ccf6e6c255d38692d72fcb613b113e6eaa240aac. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-244307.	6.1	Medium
CVE-2020-8226	2020-08-17 13h37 +00:00	A vulnerability exists in phpBB	5.8	Medium
CVE-2019-11767	2019-05-05 03h29 +00:00	Server side request forgery (SSRF) in phpBB before 3.2.6 allows checking for the existence of files and services on the local network of the host through the remote avatar upload function.	5.8	Medium
CVE-2019-9826	2019-05-02 18h43 +00:00	The fulltext search component in phpBB before 3.2.6 allows Denial of Service.	7.5	High
CVE-2008-6314	2009-02-27 10h00 +00:00	SQL injection vulnerability in tag_board.php in the Tag Board module 4.0 and earlier for phpBB allows remote attackers to execute arbitrary SQL commands via the id parameter in a delete action.	7.5
CVE-2008-6301	2009-02-26 15h00 +00:00	SQL injection vulnerability in shoutbox_view.php in the Small ShoutBox module 1.4 for phpBB allows remote attackers to execute arbitrary SQL commands via the id parameter in a delete action.	7.5
CVE-2008-1305	2008-03-12 16h00 +00:00	SQL injection vulnerability in filebase.php in the Filebase mod for phpBB allows remote attackers to execute arbitrary SQL commands via the id parameter.	7.5
CVE-2007-5688	2007-10-29 18h00 +00:00	Multiple SQL injection vulnerabilities in directory.php in the Multi-Forums (aka Multi Host Forum Pro) module 1.3.3, for phpBB and Invision Power Board (IPB or IP.Board), allow remote attackers to execute arbitrary SQL commands via the (1) go and (2) cat parameters.	7.5
CVE-2007-5173	2007-10-03 12h00 +00:00	PHP remote file inclusion vulnerability in includes/openid/Auth/OpenID/BBStore.php in phpBB Openid 0.2.0 allows remote attackers to execute arbitrary PHP code via a URL in the openid_root_path parameter.	6.8

phpBB 3.2.4

CPE Details

CPE Name: cpe:2.3:a:phpbb:phpbb:3.2.4:-:*:*:*:*:*:*

Informations

Vendor

Product

Version

Update

Related CVE

CPE Name: cpe:2.3:a:phpbb:phpbb:3.2.4:-::::::