15 matches found
EUVD-2024-49677
Malicious code in bioql PyPI...
CVE-2025-10790
SourceCodester Simple Forum Discussion System 1.0 is affected by CVE-2025-10790. The vulnerability resides in /ajax.php?action=save_category, where manipulating the Description parameter leads to SQL injection. Exploitation can be carried out remotely, and multiple connected sources confirm the e...
CVE-2025-10100 SourceCodester Simple Forum Discussion System admin_class.php sql injection
A vulnerability was detected in SourceCodester Simple Forum Discussion System 1.0. This impacts an unknown function of the file /adminclass.php?action=login. Performing manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely. The exploit is n...
CVE-2021-45252
Multiple SQL injection vulnerabilities are found on Simple Forum-Discussion System 1.0 For example on three applications which are managetopic.php, manageuser.php, and ajax.php. The attacker can be retrieving all information from the database of this system by using this vulnerability...
CVE-2024-9032
A vulnerability, which was classified as critical, was found in SourceCodester Simple Forum-Discussion System 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument page leads to path traversal. It is possible to launch the attack remotely. The exploit has...
CVE-2024-9032
CVE-2024-9032 affects SourceCodester Simple Forum-Discussion System 1.0. A path traversal vulnerability exists in an unknown function of /index.php where manipulation of the page parameter enables remote exploitation. The vulnerability is described as critical across multiple sources, with public...
CVE-2024-9032 SourceCodester Simple Forum-Discussion System index.php path traversal
A vulnerability, which was classified as critical, was found in SourceCodester Simple Forum-Discussion System 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument page leads to path traversal. It is possible to launch the attack remotely. The exploit has...
CVE-2024-9032 SourceCodester Simple Forum-Discussion System index.php path traversal
A vulnerability, which was classified as critical, was found in SourceCodester Simple Forum-Discussion System 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument page leads to path traversal. It is possible to launch the attack remotely. The exploit has...
Simple Forum-Discussion System SQL Injection Vulnerability
Simple Forum-Discussion System is a simple forum/discussion system. SQL injection vulnerability exists in Simple Forum-Discussion System, which originates in various components such as manage topic.php, manage user.php and ajax.php. Lack of validation of externally entered SQL statements. An...
CVE-2021-45252
Multiple SQL injection vulnerabilities are found on Simple Forum-Discussion System 1.0 For example on three applications which are managetopic.php, manageuser.php, and ajax.php. The attacker can be retrieving all information from the database of this system by using this vulnerability...
Sql injection
Multiple SQL injection vulnerabilities are found on Simple Forum-Discussion System 1.0 For example on three applications which are managetopic.php, manageuser.php, and ajax.php. The attacker can be retrieving all information from the database of this system by using this vulnerability...
CVE-2021-45252
CVE-2021-45252 affects Simple Forum-Discussion System 1.0 with SQL injection vulnerabilities in the manage_topic.php, manage_user.php, and ajax.php components. Root cause: lack of input validation allowing arbitrary SQL execution, enabling an attacker to retrieve potentially all database data. Im...
CVE-2021-45252
Multiple SQL injection vulnerabilities are found on Simple Forum-Discussion System 1.0 For example on three applications which are managetopic.php, manageuser.php, and ajax.php. The attacker can be retrieving all information from the database of this system by using this vulnerability...
Simple Forum-Discussion System 1.0 SQL Injection
Simple Forum-Discussion System 1.0 Vendor Description: Multiple SQL-Injections are found on Simple Forum-Discussion System 1.0 For example on three applications which are managetopic.php, manageuser.php, and ajax.php. The attacker can be retrieving all information from the database of this system...
LIDS severe bug
Hi. Didn't see a message regarding this one here, so here we go... This is from the Linux Intrusion Detection System LIDS/www.lids.org mailing list. Basically LIDS 0.9.7 for kernel 2.2.16 breaks the system so that every user is acting as uid=0 when the system has been started with /security=0 at...