Lucene search
K

4 matches found

securityvulns
securityvulns
added 2015/02/22 12:0 a.m.100 views

Multiple Vulnerabilities in my little forum

Advisory ID: HTB23248 Product: my little forum Vendor: http://mylittleforum.net/ Vulnerable Versions: 2.3.3 and probably prior Tested Version: 2.3.3 Advisory Publication: January 14, 2015 without technical details Vendor Notification: January 14, 2015 Vendor Patch: February 8, 2015 Public...

6.5CVSS0.3AI score0.02421EPSS
Exploits4
CVE
CVE
added 2015/02/16 3:0 p.m.52 views

CVE-2015-1435

CVE-2015-1435 is a cross-site scripting (XSS) vulnerability in my little forum prior to version 2.3.4. The flaw arises because the back parameter in index.php is not properly sanitized before reflecting content back to the user, enabling an attacker to inject arbitrary HTML/JavaScript into the br...

4.3CVSS5.7AI score0.02421EPSS
Exploits3References6Affected Software1
Cvelist
Cvelist
added 2015/02/16 3:0 p.m.35 views

CVE-2015-1435

Cross-site scripting XSS vulnerability in my little forum before 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the back parameter to index.php...

5.6AI score0.02421EPSS
Exploits3References6
0day.today
0day.today
added 2015/02/11 12:0 a.m.52 views

My Little Forum 2.3.3 Cross Site Scripting / SQL Injection Vulnerabilities

My Little Forum version 2.3.3 suffers from cross site scripting and remote SQL injection vulnerabilities. Product: my little forum Vendor: http://mylittleforum.net/ Vulnerable Versions: 2.3.3 and probably prior Tested Version: 2.3.3 Advisory Publication: January 14, 2015 without technical details...

6.5CVSS7.4AI score0.02421EPSS
Exploits4
Rows per page
Query Builder