3 matches found
Multiple Vulnerabilities in my little forum
Advisory ID: HTB23248 Product: my little forum Vendor: http://mylittleforum.net/ Vulnerable Versions: 2.3.3 and probably prior Tested Version: 2.3.3 Advisory Publication: January 14, 2015 without technical details Vendor Notification: January 14, 2015 Vendor Patch: February 8, 2015 Public...
CVE-2015-1434
The CVE-2015-1434 entry concerns my little forum, version 2.3.3 (and likely earlier). The advisory documents describe two vulnerable vectors in index.php: (1) SQL Injection via the edit_category parameter and via the letter parameter in admin actions, enabling arbitrary SQL execution; and (2) Cro...
My Little Forum 2.3.3 Cross Site Scripting / SQL Injection Vulnerabilities
My Little Forum version 2.3.3 suffers from cross site scripting and remote SQL injection vulnerabilities. Product: my little forum Vendor: http://mylittleforum.net/ Vulnerable Versions: 2.3.3 and probably prior Tested Version: 2.3.3 Advisory Publication: January 14, 2015 without technical details...