Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0471) CVE-2008-0471 CWE-352 CWE-352 Medium phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-1432) CVE-2015-1432 CWE-352 CWE-352 Medium phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-13376) CVE-2019-13376 CWE-352 CWE-352 Medium phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-16107) CVE-2019-16107 CWE-352 CWE-352 Medium phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-5501) CVE-2020-5501 CWE-352 CWE-352 Medium phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-5502) CVE-2020-5502 CWE-352 CWE-352 Medium phpBB CVE-2008-4125 Vulnerability (CVE-2008-4125) CVE-2008-4125 Medium phpBB CVE-2008-6507 Vulnerability (CVE-2008-6507) CVE-2008-6507 Medium phpBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2002-2346) CVE-2002-2346 CWE-200 CWE-200 Medium phpBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-7143) CVE-2008-7143 CWE-200 CWE-200 Medium phpBB Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5173) CVE-2007-5173 CWE-94 CWE-94 Medium phpBB Improper Input Validation Vulnerability (CVE-2006-2220) CVE-2006-2220 CWE-20 CWE-20 Medium phpBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2002-2255) CVE-2002-2255 CWE-707 CWE-707 Medium phpBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-0544) CVE-2011-0544 CWE-707 CWE-707 Medium phpBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1431) CVE-2015-1431 CWE-707 CWE-707 Medium phpBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-5917) CVE-2023-5917 CWE-707 CWE-707 Medium phpBB Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6506) CVE-2008-6506 CWE-264 CWE-264 Medium phpBB Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1627) CVE-2010-1627 CWE-264 CWE-264 Medium phpBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-11767) CVE-2019-11767 CWE-918 CWE-918 Medium phpBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-8226) CVE-2020-8226 CWE-918 CWE-918 Medium phpBB URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2015-3880) CVE-2015-3880 CWE-601 CWE-601 Medium PHP Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2006-5178) CVE-2006-5178 CWE-362 CWE-362 Medium PHP Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2011-0753) CVE-2011-0753 CWE-362 CWE-362 Medium PHP Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2015-8878) CVE-2015-8878 CWE-362 CWE-362 Medium PHP Console addon enabled CWE-200 CWE-200 Medium PHP Cryptographic Issues Vulnerability (CVE-2010-1128) CVE-2010-1128 Medium PHP Cryptographic Issues Vulnerability (CVE-2011-2483) CVE-2011-2483 Medium PHP Cryptographic Issues Vulnerability (CVE-2011-3189) CVE-2011-3189 Medium PHP Cryptographic Issues Vulnerability (CVE-2012-2143) CVE-2012-2143 Medium PHP curl_exec() url is controlled by user CVE-2009-0037 CWE-352 CWE-352 Medium PHP CVE-2007-4670 Vulnerability (CVE-2007-4670) CVE-2007-4670 Medium PHP CVE-2007-5898 Vulnerability (CVE-2007-5898) CVE-2007-5898 Medium PHP CVE-2011-1467 Vulnerability (CVE-2011-1467) CVE-2011-1467 Medium PHP CVE-2011-1469 Vulnerability (CVE-2011-1469) CVE-2011-1469 Medium PHP CVE-2013-7345 Vulnerability (CVE-2013-7345) CVE-2013-7345 Medium PHP CVE-2014-3479 Vulnerability (CVE-2014-3479) CVE-2014-3479 Medium PHP CVE-2022-31629 Vulnerability (CVE-2022-31629) CVE-2022-31629 Medium PHP Debug Bar enabled CWE-200 CWE-200 Medium PHP Deserialization of Untrusted Data Vulnerability (CVE-2007-1701) CVE-2007-1701 CWE-502 CWE-502 Medium PHP enable_dl enabled CWE-470 CWE-470 Medium PHP errors enabled CWE-209 CWE-209 Medium PHP eval() used on user input CWE-95 CWE-95 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-2748) CVE-2007-2748 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-5899) CVE-2007-5899 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5498) CVE-2008-5498 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1860) CVE-2010-1860 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1862) CVE-2010-1862 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1864) CVE-2010-1864 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1914) CVE-2010-1914 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1915) CVE-2010-1915 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2097) CVE-2010-2097 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2100) CVE-2010-2100 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2101) CVE-2010-2101 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2190) CVE-2010-2190 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2484) CVE-2010-2484 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2531) CVE-2010-2531 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-3062) CVE-2010-3062 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1171) CVE-2012-1171 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-6113) CVE-2012-6113 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1643) CVE-2013-1643 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3412) CVE-2015-3412 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-7128) CVE-2016-7128 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-7890) CVE-2017-7890 CWE-200 CWE-200 Medium PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-10545) CVE-2018-10545 CWE-200 CWE-200 Medium Phpfastcache phpinfo publicly accessible (CVE-2021-37704) CVE-2021-37704 CWE-200 CWE-200 Medium PHP hangs on parsing particular strings as floating point number CVE-2010-4645 CWE-189 CWE-189 Medium PHP HTTP POST incorrect MIME header parsing vulnerability CVE-2002-0717 CWE-20 CWE-20 Medium PHP Improper Access Control Vulnerability (CVE-2015-8838) CVE-2015-8838 CWE-284 CWE-284 Medium PHP Improper Certificate Validation Vulnerability (CVE-2015-3152) CVE-2015-3152 CWE-295 CWE-295 Medium PHP Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2006-0207) CVE-2006-0207 CWE-94 CWE-94 Medium PHP Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-4782) CVE-2007-4782 CWE-94 CWE-94 Medium PHP Improper Handling of Exceptional Conditions Vulnerability (CVE-2014-1943) CVE-2014-1943 CWE-755 CWE-755 Medium PHP Improper Input Validation Vulnerability (CVE-2006-6383) CVE-2006-6383 CWE-20 CWE-20 Medium PHP Improper Input Validation Vulnerability (CVE-2006-7243) CVE-2006-7243 CWE-20 CWE-20 Medium PHP Improper Input Validation Vulnerability (CVE-2007-0908) CVE-2007-0908 CWE-20 CWE-20 Medium 1...72737475...99 73 / 99
