Export limit exceeded: 364053 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Export limit exceeded: 13798 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Export limit exceeded: 11648 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Export limit exceeded: 15971 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (4 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2007-0076 1 2enetworx 1 Openforum 2026-04-23 N/A
Openforum stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing user passwords via a direct request for openforum.mdb.
CVE-2008-7066 1 2enetworx 1 Openforum 2026-04-23 N/A
OpenForum 0.66 Beta allows remote attackers to bypass authentication and reset passwords of other users via a direct request with the update parameter set to 1 and modified user and password parameters.
CVE-2006-3321 1 2enetworx 1 Openforum 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in openforum.asp in OpenForum 1.2 Beta and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ofdisp and (2) ofmsgid parameters.
CVE-2010-0674 1 2enetworx 1 Statcountex 2025-04-11 N/A
StatCounteX 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for path/stats.mdb.