Exposición de phpBB
Message boards24
score de exposición
4314
sitios usan
0
en explotación
1
críticos
CVEs
6 resultadosCVE-2026-48611CRITICALImproper authentication checks in the OAuth implementation allow account hijacking even when OAuth is not configured or enabled leading to uEPSS 0.7%CVE-2023-5917LOWphpBB Smiley Pack acp_icons.php main cross site scriptingEPSS 0.5%CVE-2026-47366HIGHImproper verification of access permissions when modifying permissions through the Administration Control Panel (ACP) allowed an authenticatEPSS 0.3%CVE-2026-29199HIGHphpBB before 3.3.16 is vulnerable to Host Header Injection that can lead to password rest link poisoning. When force_server_vars is disabledEPSS 0.2%CVE-2026-48613HIGHSQL injection vulnerability in phpBB profile field migration due to improper handling of user-supplied profile field data during migration, EPSS 0.2%CVE-2026-48612HIGHImproper state verification in the OAuth implementation could allow an attacker to manipulate the authentication flow and cause a victim’s aEPSS 0.1%
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →