Fipsasp - Fipsforum CVE - CVE Search - CVE Details

Filtered by vendor Fipsasp Subscribe

Filtered by product Fipsforum

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2006-6116	1 Fipsasp	1 Fipsforum	2017-10-18	7.5 HIGH	N/A
SQL injection vulnerability in default2.asp in fipsForum 2.6 and earlier allows remote attackers to execute arbitrary SQL commands via the kat parameter.
CVE-2010-0765	1 Fipsasp	1 Fipsforum	2017-08-16	5.0 MEDIUM	N/A
fipsForum 2.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for _database/forumFips.mdb.

Vulnerabilities (CVE)