CVE-2010-1627

EPSS 0.14% · P33 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-1627

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

feed.php in phpBB 3.0.7 before 3.0.7-PL1 does not properly check permissions for feeds, which allows remote attackers to bypass intended access restrictions via unspecified attack vectors related to permission settings on a private forum.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

phpBB 'feed.php'错误权限检查漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

phpBB是非常流行的WEB论坛程序。 phpBB的feed.php脚本没有正确地检查订阅源的权限，在以下环境中远程攻击者可以绕过权限检查执行非授权操作： * 启用了订阅源 * 启用了张贴或主题源 * 非授权用户对私人论坛设置了论坛权限

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2010-1627

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2010-1627

Please Login to view more intelligence information

http://www.phpbb.com/community/viewtopic.php?f=14&t=2014195x_refsource_CONFIRM
http://www.openwall.com/lists/oss-security/2010/05/16/1mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2010/05/18/6mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2010-1627

Same Patch Batch · n/a · 2010-05-19 · 20 CVEs total

CVE-2010-1979		Affiliate Datafeeds (com_datafeeds)目录遍历漏洞
CVE-2010-1985		Six Apart Movable Type管理用户接口多个跨站脚本攻击漏洞
CVE-2010-1630		phpBB 'posting.php'未明漏洞
CVE-2010-1629		Phorum跨站脚本攻击漏洞
CVE-2010-1628		Artifex Ghostscript无限递归调用远程代码执行漏洞
CVE-2010-1984		Drupal Taxonomy Breadcrumb模块跨站脚本攻击漏洞
CVE-2010-1983		Redcomponent redTWITTER目录遍历漏洞
CVE-2010-1982		Joomlart JA Voice目录遍历漏洞
CVE-2010-1981		Fabrikar Fabrik目录遍历漏洞
CVE-2010-1980		Joomla!组件Joomla Flickr 'controller'参数本地文件包含漏洞
CVE-2010-1169		PostgreSQL PL/perl存储过程安全限制绕过漏洞
CVE-2010-1978		FreePHPBlogSoftware 'default_theme.php'远程文件包含漏洞
CVE-2010-1977		Gohigheris J!WHMCS Integrator目录遍历漏洞
CVE-2010-1976		Drupal Taxonomy Breadcrumb模块跨站脚本攻击漏洞
CVE-2010-1975		PostgreSQL RESET ALL操作过程访问控制漏洞
CVE-2010-1454		VMware SpringSource tc Server JMX接口绕过认证漏洞
CVE-2010-1447		PostgreSQL PL/perl程序访问限制绕过漏洞
CVE-2010-1321		MIT Kerberos GSS-API校验和空指针引用拒绝服务漏洞
CVE-2010-1170		PostgreSQL PL/tcl存储过程绕过安全限制漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2010-1627

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2010-1627

I. Basic Information for CVE-2010-1627

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2010-1627

III. Intelligence Information for CVE-2010-1627

Same Patch Batch · n/a · 2010-05-19 · 20 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2010-1627

Leave a comment