Every CVE whose affected-product data names Zoneo-soft Freeforum, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2005-3816 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in forum.php in freeForum 1.1 and earlier and earlier allow remote attackers to execute arbitrary…
CVE-2006-0957 — CVSS 7.5 (high): Direct static code injection vulnerability in func.inc.php in ZoneO-Soft freeForum before 1.2.1 allows remote attackers to execute…
CVE-2007-0487 — CVSS 7.5 (high): PHP remote file inclusion vulnerability in index.php in FreeForum 0.9.0 allows remote attackers to execute arbitrary PHP code via a URL in…
CVE-2006-0958 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in func.inc.php in ZoneO-Soft freeForum before 1.2.1 allows remote attackers to inject arbitrary…
CVE-2008-3566 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in ZoneO-soft freeForum 1.7 allows remote attackers to inject arbitrary web script or HTML via the…