Known Vulnerabilities for products from Fudforum
Listed below are 10 of the newest known vulnerabilities associated with the vendor "Fudforum".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-30863 json | FUDForum 3.1.2 is vulnerable to Cross Site Scripting (XSS) via page_title param in Page Manager in the Admin Control Panel. | 4.8 - MEDIUM | 2022-06-06 | 2022-06-13 |
| CVE-2022-30861 json | FUDforum 3.1.2 is vulnerable to Stored XSS via Forum Name field in Forum Manager Feature. | 4.8 - MEDIUM | 2022-06-06 | 2022-06-14 |
| CVE-2022-30860 json | FUDforum 3.1.2 is vulnerable to Remote Code Execution through Upload File feature of File Administration System in Admin Cont... | 7.2 - HIGH | 2022-06-06 | 2022-06-14 |
| CVE-2022-28545 json | FUDforum 3.1.1 is vulnerable to Stored XSS. | 5.4 - MEDIUM | 2022-05-06 | 2022-05-16 |
| CVE-2021-27520 json | A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the "autho... | 6.1 - MEDIUM | 2021-03-19 | 2021-12-03 |
| CVE-2021-27519 json | A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the "srch"... | 6.1 - MEDIUM | 2021-03-19 | 2021-12-03 |
| CVE-2019-18873 json | FUDForum 3.0.9 is vulnerable to Stored XSS via the User-Agent HTTP header. This may result in remote code execution. An attac... | 9 - CRITICAL | 2019-11-12 | 2019-11-15 |
| CVE-2019-18839 json | FUDForum 3.0.9 is vulnerable to Stored XSS via the nlogin parameter. This may result in remote code execution. An attacker ca... | 9 - CRITICAL | 2019-11-13 | 2019-11-15 |
| CVE-2013-5309 json | Cross-site scripting (XSS) vulnerability in install/forum_data/src/custom_fields.inc.t in FUDforum 3.0.4.1 and earlier, when ... | Not Provided | 2013-08-16 | 2026-04-29 |
| CVE-2013-2267 json | PHP Code Injection vulnerability in FUDforum Bulletin Board Software 3.0.4 could allow remote attackers to execute arbitrary ... | 7.2 - HIGH | 2020-01-27 | 2020-01-29 |
Known software with vulnerabilities from Fudforum
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Fudforum | Fudforum | 2.7.1 |