CVE-2015-1467

🗓️ 06 Feb 2015 15:00:00Reported by mitreType

cve

cve🔗 web.nvd.nist.gov👁 49 Views🌐 WEB

Multiple SQL injection vulnerabilities in Fork CMS before 3.8.

Reporter	Title	Published	Views	Family All 12
0day.today	Fork CMS 3.8.5 SQL Injection Vulnerability	5 Feb 201500:00	–	zdt
CNVD	Multiple SQL Injection Vulnerabilities in Fork CMS	12 Feb 201500:00	–	cnvd
Cvelist	CVE-2015-1467	6 Feb 201515:00	–	cvelist
Exploit DB	Fork CMS 3.8.5 - SQL Injection	9 Feb 201500:00	–	exploitdb
EUVD	EUVD-2015-1602	7 Oct 202500:30	–	euvd
exploitpack	Fork CMS 3.8.5 - SQL Injection	9 Feb 201500:00	–	exploitpack
NVD	CVE-2015-1467	6 Feb 201515:59	–	nvd
Packet Storm	Fork CMS 3.8.5 SQL Injection	4 Feb 201500:00	–	packetstorm
Prion	Sql injection	6 Feb 201515:59	–	prion
securityvulns	[CVE-2015-1467] Fork CMS - SQL Injection in Version 3.8.5	23 Feb 201500:00	–	securityvulns

NVD

Node

fork-cms fork_cmsRange≤3.8.5

Source	Link
fork-cms	www.fork-cms.com/blog/detail/fork-3.8.6-released
securityfocus	www.securityfocus.com/archive/1/534616/100/0/threaded
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/100668
packetstormsecurity	www.packetstormsecurity.com/files/130242/Fork-CMS-3.8.5-SQL-Injection.html

Parameter	Position	Path	Description	CWE
language[]	query param	/private/en/locale/index	SQL Injection via language[] and/or type[] parameters in the Translations settings (authenticated user).	CWE-89
type[]	query param	/private/en/locale/index	SQL Injection via language[] and/or type[] parameters in the Translations settings (authenticated user).	CWE-89

06 May 2026 22:30Current

8.1High risk

Vulners AI Score8.1

CVSS 27.5

EPSS0.01345

cve-2015-1467 sql injection translations fork cms security vulnerability nvd