Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Fusionphp Security Vulnerabilities

cve
cve

CVE-2004-1703

Fusion News 3.6.1 allows remote attackers to add user accounts, if the administrator is logged in, via a comment that contains an img bbcode tag that calls index.php with the signup action, which is executed when the administrator's browser loads the page with the img...

8.8CVSS

7AI Score

0.005EPSS

2005-02-26 05:00 AM
36
cve
cve

CVE-2006-7003

PHP remote file inclusion vulnerability in admin/index.php in Fusion Polls allows remote attackers to execute arbitrary PHP code via a URL in the xtrphome...

7.5AI Score

0.005EPSS

2022-10-03 04:21 PM
21
cve
cve

CVE-2006-4240

PHP remote file inclusion vulnerability in index.php in Fusion News 3.7 allows remote attackers to execute arbitrary PHP code via a URL in the fpath...

7.9AI Score

0.12EPSS

2006-08-21 06:04 PM
21
cve
cve

CVE-2006-3387

Directory traversal vulnerability in sources/post.php in Fusion News 1.0, when register_globals is enabled, allows remote attackers to include arbitrary files via a .. (dot dot) sequence in the fil_config parameter, which can be used to execute PHP code that has been injected into a log...

7.6AI Score

0.014EPSS

2006-07-06 08:05 PM
37