Alstrasoft

Forum Pay Per Post Exchange

3 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2008-3954

Exploit
  • EPSS 0.58%
  • Published 11.09.2008 01:13:47
  • Last modified 09.04.2025 00:30:58

SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showcat action.

5

CVE-2008-0440

  • EPSS 0.87%
  • Published 23.01.2008 23:00:00
  • Last modified 09.04.2025 00:30:58

AlstraSoft Forum Pay Per Post Exchange 2.0 stores passwords in cleartext, which makes it easier for attackers to access user accounts.

7.5

CVE-2008-0429

Exploit
  • EPSS 1.01%
  • Published 23.01.2008 22:00:00
  • Last modified 09.04.2025 00:30:58

SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange 2.0 allows remote attackers to execute arbitrary SQL commands via the catid parameter in a forum_catview action.