5 matches found
EUVD-2017-4499
Malware in sbrugna...
CVE-2017-12981
NexusPHP 1.5.beta5.20120707 has SQL Injection in forummanage.php via the sort parameter in an addforum action...
Sql injection
NexusPHP 1.5.beta5.20120707 has SQL Injection in forummanage.php via the sort parameter in an addforum action...
CVE-2017-12981
CVE-2017-12981 affects NexusPHP 1.5.beta5.20120707 in forummanage.php. The vulnerability is an SQL Injection via the sort parameter used in an addforum action, as described in the CVE entry. The connected documents confirm the affected component and the injection vector but do not provide exploit...
Cross site scripting
Cross-site scripting XSS vulnerability in fs-admin/wpf-add-forum.php in the ForumPress WP Forum Server plugin before 1.7.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the groupid parameter in an addforum action to wp-admin/admin.php...