Vulnerabilities (CVE)

Filtered by vendor Crosscom Olicom Subscribe
Filtered by product Discuz
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2005-2614 1 Crosscom Olicom 1 Discuz 2024-11-20 7.5 HIGH N/A
Discuz! 4.0 rc4 does not properly restrict types of files that are uploaded to the server, which allows remote attackers to execute arbitrary commands via a filename containing ".php.rar" or other multiple extensions that include .php.
CVE-2004-0254 1 Crosscom Olicom 1 Discuz 2024-11-20 6.8 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Discuz! Board 2.x and 3.x allows remote attackers to execute arbitrary script as other users via an img tag.