CVE-2026-6004

A vulnerability was detected in code-projects Simple IT Discussion Forum 1.0. Impacted is an unknown function of the file /delete-category.php. Performing a manipulation of the argument catid results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and m...

CVE-2026-6003

A security vulnerability has been detected in code-projects Simple IT Discussion Forum 1.0. This issue affects some unknown processing of the file /admin/user.php. Such manipulation of the argument fname leads to cross site scripting. The attack may be performed from remote. The exploit has been...

CVE-2025-6850

A vulnerability has been found in code-projects Simple Forum 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /forum1.php. The manipulation of the argument File leads to sql injection. The attack can be launched remotely. The exploit has been...

CVE-2025-6847

A vulnerability classified as critical was found in code-projects Simple Forum 1.0. This vulnerability affects unknown code of the file /forumedit.php. The manipulation of the argument iii leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public a...

CVE-2024-5734

CVE-2024-5734 affects itsourcecode Online Discussion Forum 1.0. Affected is an unknown function in /members/poster.php; manipulation of the image parameter enables unrestricted file upload, enabling remote attack. Exploit has been disclosed publicly. Documented CVSS metrics vary by source (e.g., ...

BBoard Forum 1.0 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

PT-2023-23368 · Unknown · Sourcecodester Online Discussion Forum Site

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Discussion Forum Site version 1.0 Description: A critical issue affects some unknown functionality of the file usermanage user.php. The manipulation of the id argument leads to sql injection. The attack can be launched...

CVE-2020-28141

The messaging subsystem in the Online Discussion Forum 1.0 is vulnerable to XSS in the message body. An authenticated user can send messages to arbitrary users on the system that include javascript that will execute when viewing the messages page...

Design/Logic Flaw

The messaging subsystem in the Online Discussion Forum 1.0 is vulnerable to XSS in the message body. An authenticated user can send messages to arbitrary users on the system that include javascript that will execute when viewing the messages page...

Duhok Forum 1.0 script Cross Site Scripting Vulnerability

No description provided by source. ======================================================================================== | Title : Duhok Forum 1.0 script Cross Site Scripting Vulnerability | Author : indoushka | email : [email protected] | Home : www.iq-ty.com $ | Dork : duhokFrm 1.0 $ |...

Vegas Forum 1.0 Forumlib.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17079/info Vegas Forum is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could all...

Month Of Abysssec Undisclosed Bugs - Free Discussion Forum

''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-14-freediscussionforums-multiple-remote-vulnerabilities/ ''' Abysssec Inc Public Advisory Title : FreeDiscussionForums Multiple Remote...

Duhok Forum 1.0 Cross Site Scripting

======================================================================================== | Title : Duhok Forum 1.0 script Cross Site Scripting Vulnerability | Author : indoushka | email : [email protected] | Home : www.iq-ty.com | Dork : åÐÇ ÇáãæÞÚ íÓÊÎÏã ÈÑäÇãÌ duhokFrm 1.0 | Tested on:...

Duhok Forum 1.0 script - Cross-Site Scripting

======================================================================================== | Title : Duhok Forum 1.0 script Cross Site Scripting Vulnerability | Author : indoushka | email : [email protected] | Home : www.iq-ty.com $ | Dork : duhokFrm 1.0 $ | Tested on: windows SP2 Franais V.Pnx...

Duhok Forum 1.0 script - Cross-Site Scripting

Duhok Forum 1.0 script - Cross-Site Scripting ======================================================================================== | Title : Duhok Forum 1.0 script Cross Site Scripting Vulnerability | Author : indoushka | email : [email protected] | Home : www.iq-ty.com $ | Dork : duhokFr...

Futility Forum 1.0 Revamp DB Download Vulnerability

Exploit for unknown platform in category web applications =================================================== Futility Forum 1.0 Revamp DB Download Vulnerability ===================================================...

CVE-2008-5901

CVE-2008-5901 affects iyzi Forum 1.0 beta 3, where sensitive information is stored under the web root with insufficient access control. A direct request to the file db/iyziforum.mdb can allow remote attackers to download the database, exposing passwords. The CVSS data (NVD) characterizes the impa...

GO4I.NET ASP Forum 1.0 - SQL Injection

GO4I.NET ASP Forum 1.0 - SQL Injection Bl@ckbe@rD 'Tunisian TerrorisT' ===================== ----------------------------------------------------------------------------------- + Script Name : Asp Forum v1.0 Rem0te SQL Injection EXploit + Author : Bl@ckbe@rD 'Tunisian TerrorisT' + Contact :...

GO4I.NET ASP Forum 1.0 (forum.asp iFor) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =================================================================== GO4I.NET ASP Forum 1.0 forum.asp iFor SQL Injection Vulnerability ===================================================================...

CVE-2007-3234

SQL injection vulnerability in low.php in Fuzzylime Forum 1.0 allows remote attackers to execute arbitrary SQL commands via the topic parameter...