Approved changes feed: RSS · Atom

cpe:2.3:a:powie:pforum:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorPowie (4964ef30-0578-50c8-b814-c45032ece7b0)
ProductPforum (9fbd44fa-f11c-588b-a63f-3ea5a23faab3)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2006-6038 vulnerable 2026-06-08 04:49:21.837759 Details available
SQL injection vulnerability in editpoll.php in Powie's PHP Forum (pForum) 1.29a and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Published: 2006-11-22T00:00:00.000Z
Updated: 2024-08-07T20:12:31.303Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2002-0287 vulnerable 2026-06-08 04:46:21.138193 Details available
pforum 1.14 and earlier does not explicitly enable PHP magic quotes, which allows remote attackers to bypass authentication and gain administrator privileges via an SQL injection attack when the PHP server is not configured to use magic quotes by default.
Published: 2003-04-02T05:00:00.000Z
Updated: 2024-08-08T02:42:28.986Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.