2 matches found
CVE-2005-2323
Multiple SQL injection vulnerabilities in Class-1 Forum 0.24.4 and 0.23.2, and Clever Copy with forums installed, allow remote attackers to modify SQL statements via the following parameters: (1) id in viewattach.php, (2) viewuser_id in users.php, and (3) id or (4) forum in viewforum.php. Affecte...
CVE-2005-2322
CVE-2005-2322 describes a cross-site scripting (XSS) vulnerability in the PHP-based forum software Class-1 Forum (versions 0.24.4 and 0.23.2) and in Clever Copy when used with forums. According to the provided documents, the issue allows remote attackers to inject arbitrary web script or HTML by ...