2 matches found
CVE-2024-44739
CVE-2024-44739 concerns Sourcecodester Simple Forum Website v1.0, which contains a SQL injection vulnerability in the parameter id of /php-sqlite-forum/?page=manage_user&id=. The CVSS 3.1 score is 8.8 (HIGH) with network access, low attack complexity, and no user interaction, and it affects confi...
CVE-2024-7929
CVE-2024-7929 corresponds to SourceCodester Simple Forum Website 1.0. A cross-site scripting vulnerability exists in the Signup Page component, specifically the /registration.php file, due to manipulation of the username parameter. The flaw can be exploited remotely and has been disclosed publicl...