This page lists publicly disclosed CVE vulnerabilities affecting crosscom_olicom discuz (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2005-2614 | Discuz! 4.0 rc4 does not properly restrict types of files that are uploaded to the server, which allows remote attackers to execute arbitrary commands via a filename containing ".php.rar" or other multiple extensions that include .php. | [email protected] | 7.5 | 2.16% | 2005-08-17 | 2026-04-16 |
| CVE-2004-0254 | Cross-site scripting (XSS) vulnerability in Discuz! Board 2.x and 3.x allows remote attackers to execute arbitrary script as other users via an img tag. | [email protected] | 6.8 | 5.89% | 2004-11-23 | 2026-04-16 |