CVE-2026-5829 code-projects Simple IT Discussion Forum content.php sql injection

A vulnerability was determined in code-projects Simple IT Discussion Forum 1.0. The impacted element is an unknown function of the file /pages/content.php. This manipulation of the argument postid causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly...

PT-2026-31561

Name of the Vulnerable Software and Affected Versions Simple IT Discussion Forum version 1.0 Description A SQL injection issue exists in Simple IT Discussion Forum 1.0 due to manipulation of the post id argument within an unknown function of the /pages/content.php file. This allows for remote...

EUVD-2017-8728

Malware in sbrugna...

EUVD-2010-0982

Malware in sbrugna...

EUVD-2006-2850

Malware in sbrugna...

EUVD-2017-7403

Malware in sbrugna...

EUVD-2020-16715

Malware in sbrugna...

EUVD-2020-16717

Malware in sbrugna...

EUVD-2019-7465

Malware in sbrugna...

EUVD-2005-3981

Malware in sbrugna...

EUVD-2020-12911

Malware in sbrugna...

EUVD-2020-16712

Malware in sbrugna...

CVE-2025-6870 SourceCodester Simple Company Website Content.php unrestricted upload

A vulnerability was found in SourceCodester Simple Company Website 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /classes/Content.php?f=service. The manipulation of the argument img leads to unrestricted upload. The attack may be launched...

CVE-2025-6870

CVE-2025-6870 affects SourceCodester Simple Company Website 1.0. Affected component: the file /classes/Content.php?f=service, where manipulation of the parameter img enables unrestricted upload. Root cause stated as improper handling of the img argument allowing remote exploitation; exploitation ...

CVE-2020-23976

Webexcels Ecommerce CMS 2.x, 2017, 2018, 2019, 2020 has SQL Injection via the 'content.php' id parameter...

CVE-2020-23979

13enforme CMS 1.0 has SQL Injection via the 'content.php' id parameter...

CVE-2020-23981

13enforme CMS 1.0 has Cross Site Scripting via the "content.php" id parameter...

CVE-2020-20122

Wuzhi CMS v4.1 contains a SQL injection vulnerability in the checktitle function in /coreframe/app/content/admin/content.php...

Cross site scripting

Cross Site Scripting XSS vulnerability in Bludit CMS version 3.15, allows remote attackers to execute arbitrary code and obtain sensitive information via edit-content.php...

CVE-2024-25297

CVE-2024-25297 is a Cross Site Scripting (XSS) vulnerability in Bludit CMS 3.15 exploitable via the endpoint edit-content.php . Multiple connected sources describe that remote attackers can execute arbitrary code and access sensitive information through this vector. Exploitation details in public...