Ralph Capper Tinyphpforum — known CVE vulnerabilities
Every CVE whose affected-product data names Ralph Capper Tinyphpforum, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2006-0103 — CVSS 5.0 (medium): TinyPHPForum 3.6 and earlier stores the (1) users/[USERNAME].hash and (2) users/[USERNAME].email files under the web root with insufficient…
CVE-2006-0104 — CVSS 5.0 (medium): Directory traversal vulnerability in TinyPHPForum 3.6 and earlier allows remote attackers to create a new user account, create a new topic…
CVE-2006-0102 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in TinyPHPForum (TPF) 3.6 and earlier allows remote attackers to inject arbitrary web script via a…
CVE-2006-1898 — CVSS 2.6 (low): Multiple cross-site scripting (XSS) vulnerabilities in Ralph Capper Tiny PHP Forum (TPF) 3.6 allow remote attackers to inject arbitrary web…