Lucene search
K

194 matches found

CNNVD
CNNVD
added 2025/06/29 12:0 a.m.4 views

Code-Projects Simple Forum 注入漏洞

Simple forum is a simple forum. Simple forum suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter User in the file /register1.php. An attacker can exploit this vulnerability to execute illegal SQL commands to...

9.8CVSS8.2AI score0.00399EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.9 views

PT-2025-27375 · Code Projects · Code-Projects Simple Forum

Name of the Vulnerable Software and Affected Versions: code-projects Simple Forum version 1.0 Description: A critical issue has been discovered, affecting the /forum downloadfile.php file. The manipulation of the filename argument leads to path traversal. This issue can be initiated remotely...

5.3CVSS7.3AI score0.0045EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/06/29 12:0 a.m.34 views

Code-Projects Simple Forum 路径遍历漏洞

Simple forum is a simple forum. Simple forum suffers from a path traversal vulnerability, which stems from the parameter filename in the file /forumdownloadfile.php failing to properly filter for special elements in the path of a resource or file. An attacker can exploit this vulnerability to cau...

5.3CVSS6.9AI score0.0045EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/06/29 12:0 a.m.4 views

Code-Projects Simple Forum 注入漏洞

Simple forum is a simple forum. Simple forum suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter File in the file /forum1.php. An attacker can exploit this vulnerability to execute illegal SQL commands to ste...

8.8CVSS8.2AI score0.00318EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.5 views

PT-2025-27353 · Unknown · Code-Projects Simple Forum

Name of the Vulnerable Software and Affected Versions: code-projects Simple Forum version 1.0 Description: A critical issue has been discovered, affecting an unknown functionality of the file "/forum1.php". The manipulation of the File argument leads to SQL injection. This issue can be exploited...

8.8CVSS8.1AI score0.00318EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.10 views

PT-2025-27351 · Code Projects · Code-Projects Simple Forum

Name of the Vulnerable Software and Affected Versions: code-projects Simple Forum version 1.0 Description: A critical issue has been found in the processing of the file /forum1.php, allowing unrestricted upload through the manipulation of the File argument. This can be initiated remotely. The...

8.8CVSS7AI score0.00308EPSS
Exploits1References11
CNNVD
CNNVD
added 2025/06/29 12:0 a.m.6 views

Code-Projects Simple Forum 代码问题漏洞

Simple forum is a simple forum. Simple forum has a code issue vulnerability that stems from the lack of valid validation of uploaded files in the parameter File in the file /forum1.php. An attacker can exploit this vulnerability to upload malicious files...

8.8CVSS7.2AI score0.00308EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.5 views

PT-2025-27349 · Code Projects · Code-Projects Simple Forum

Name of the Vulnerable Software and Affected Versions: code-projects Simple Forum version 1.0 Description: A critical issue was found in the code, affecting the /forum edit.php file. The manipulation of the iii argument leads to SQL injection. This issue can be exploited remotely. Recommendations...

9.8CVSS8.3AI score0.00332EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.8 views

PT-2025-27352 · Unknown · Code-Projects Simple Forum

Name of the Vulnerable Software and Affected Versions: code-projects Simple Forum version 1.0 Description: A problem was found in an unknown function of the file /forum edit1.php. The manipulation of the argument text leads to cross site scripting. It is possible to launch the attack remotely. Th...

5.1CVSS6.3AI score0.00269EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.5 views

PT-2025-27348 · Unknown · Code-Projects Simple Forum

Name of the Vulnerable Software and Affected Versions: code-projects Simple Forum version 1.0 Description: A critical issue has been discovered, affecting an unknown part of the file /forum viewfile.php. The manipulation of the Name argument leads to SQL injection. This issue can be exploited...

7.5CVSS8.1AI score0.00348EPSS
Exploits1References11
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.8 views

PT-2025-27345 · Unknown · Code-Projects Simple Forum

Name of the Vulnerable Software and Affected Versions: code-projects Simple Forum version 1.0 Description: A critical vulnerability was found in the code-projects Simple Forum. The issue affects an unknown functionality of the file /signin.php. The manipulation of the User argument leads to SQL...

9.8CVSS8.1AI score0.00399EPSS
Exploits1References12
RedhatCVE
RedhatCVE
added 2025/05/23 10:29 a.m.10 views

CVE-2024-7929

A vulnerability, which was classified as problematic, was found in SourceCodester Simple Forum Website 1.0. This affects an unknown part of the file /registration.php of the component Signup Page. The manipulation of the argument username leads to cross site scripting. It is possible to initiate...

6.9CVSS6.2AI score0.00462EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:58 a.m.6 views

CVE-2023-3539

A vulnerability, which was classified as problematic, has been found in SimplePHPscripts Simple Forum PHP 2.7. This issue affects some unknown processing of the file /preview.php of the component URL Parameter Handler. The manipulation leads to cross site scripting. The attack may be initiated...

6.1CVSS6.4AI score0.00357EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:10 p.m.5 views

CVE-2021-45252

Multiple SQL injection vulnerabilities are found on Simple Forum-Discussion System 1.0 For example on three applications which are managetopic.php, manageuser.php, and ajax.php. The attacker can be retrieving all information from the database of this system by using this vulnerability...

9.8CVSS7.8AI score0.01239EPSS
Exploits1
OSV
OSV
added 2024/09/20 1:15 p.m.5 views

CVE-2024-9032

A vulnerability, which was classified as critical, was found in SourceCodester Simple Forum-Discussion System 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument page leads to path traversal. It is possible to launch the attack remotely. The exploit has...

8.8CVSS5.5AI score0.00752EPSS
Exploits1References5
NVD
NVD
added 2024/09/20 1:15 p.m.26 views

CVE-2024-9032

A vulnerability, which was classified as critical, was found in SourceCodester Simple Forum-Discussion System 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument page leads to path traversal. It is possible to launch the attack remotely. The exploit has...

8.8CVSS0.00752EPSS
Exploits1References5
Cvelist
Cvelist
added 2024/09/20 1:0 p.m.28 views

CVE-2024-9032 SourceCodester Simple Forum-Discussion System index.php path traversal

A vulnerability, which was classified as critical, was found in SourceCodester Simple Forum-Discussion System 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument page leads to path traversal. It is possible to launch the attack remotely. The exploit has...

6.5CVSS0.00752EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2024/09/20 1:0 p.m.14 views

CVE-2024-9032 SourceCodester Simple Forum-Discussion System index.php path traversal

A vulnerability, which was classified as critical, was found in SourceCodester Simple Forum-Discussion System 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument page leads to path traversal. It is possible to launch the attack remotely. The exploit has...

6.5CVSS6.9AI score0.00752EPSS
Exploits1References5
CVE
CVE
added 2024/09/20 1:0 p.m.45 views

CVE-2024-9032

CVE-2024-9032 affects SourceCodester Simple Forum-Discussion System 1.0. A path traversal vulnerability exists in an unknown function of /index.php where manipulation of the page parameter enables remote exploitation. The vulnerability is described as critical across multiple sources, with public...

8.8CVSS6.8AI score0.00752EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2024/09/06 1:15 p.m.13 views

CVE-2024-44739

Sourcecodester Simple Forum Website v1.0 has a SQL injection vulnerability in /php-sqlite-forum/?page=manageuser&id=...

8.8CVSS0.00543EPSS
Exploits1References1
Rows per page
Query Builder