Known Vulnerabilities for products from Powie
Listed below are 14 of the newest known vulnerabilities associated with the vendor "Powie".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-30638 json | Not Provided | 2025-06-06 | 2026-04-23 | |
| CVE-2025-23641 json | Not Provided | 2025-01-16 | 2026-04-23 | |
| CVE-2020-37225 json | Not Provided | 2026-05-13 | 2026-05-13 | |
| CVE-2012-6524 json | SQL injection vulnerability in kommentar.php in pGB 2.12 allows remote attackers to execute arbitrary SQL commands via the id... | Not Provided | 2013-01-31 | 2026-04-29 |
| CVE-2012-1211 json | Cross-site scripting (XSS) vulnerability in pfile/kommentar.php in Powie pFile 1.02 allows remote attackers to inject arbitra... | Not Provided | 2012-02-24 | 2026-04-29 |
| CVE-2012-1210 json | SQL injection vulnerability in pfile/file.php in Powie pFile 1.02 allows remote attackers to execute arbitrary SQL commands v... | Not Provided | 2012-02-24 | 2026-04-29 |
| CVE-2008-5269 json | SQL injection vulnerability in index.php in pSys 0.7.0 alpha allows remote attackers to execute arbitrary SQL commands via th... | Not Provided | 2008-11-28 | 2026-04-23 |
| CVE-2008-4357 json | SQL injection vulnerability in linkto.php in Powie pLink 2.07 allows remote attackers to execute arbitrary SQL commands via t... | Not Provided | 2008-09-30 | 2026-04-23 |
| CVE-2008-4355 json | SQL injection vulnerability in showprofil.php in Powie PSCRIPT Forum (aka PHP Forum or pForum) 1.30 and earlier allows remote... | Not Provided | 2008-09-30 | 2026-04-23 |
| CVE-2008-4347 json | SQL injection vulnerability in newskom.php in Powie pNews 2.03 allows remote attackers to execute arbitrary SQL commands via ... | Not Provided | 2008-09-30 | 2026-04-23 |
| CVE-2008-3131 json | SQL injection vulnerability in chatbox.php in pSys 0.7.0 Alpha, when magic_quotes_gpc is disabled, allows remote attackers to... | Not Provided | 2008-07-10 | 2026-04-23 |
| CVE-2008-2673 json | SQL injection vulnerability in index.php in Powie pNews 2.08 and 2.10, when magic_quotes_gpc is disabled, allows remote attac... | Not Provided | 2008-06-12 | 2026-04-23 |
| CVE-2006-6039 json | SQL injection vulnerability in matchdetail.php in Powie's PHP MatchMaker 4.05 and earlier allows remote attackers to execute ... | Not Provided | 2006-11-22 | 2026-04-23 |
| CVE-2006-6038 json | SQL injection vulnerability in editpoll.php in Powie's PHP Forum (pForum) 1.29a and earlier allows remote attackers to execut... | Not Provided | 2006-11-22 | 2026-04-23 |
| CVE-2004-1716 json | Cross-site scripting (XSS) vulnerability in PForum before 1.26 allows remote attackers to inject arbitrary web script or HTML... | Not Provided | 2004-08-16 | 2025-04-03 |
| CVE-2002-0319 json | Cross-site scripting vulnerability in edituser.php for pforum 1.14 and earlier allows remote attackers to execute script and ... | Not Provided | 2002-06-25 | 2025-04-03 |
| CVE-2002-0287 json | pforum 1.14 and earlier does not explicitly enable PHP magic quotes, which allows remote attackers to bypass authentication a... | Not Provided | 2002-05-31 | 2025-04-03 |