Mylittleforum » My Little Forum : Security Vulnerabilities, CVEs, Published In 2015 (XSS)
Multiple cross-site scripting (XSS) vulnerabilities in my little forum 2.3.3, 2.2, and 1.7 allow remote attackers to inject arbitrary web script or HTML via the (1) page or (2) category parameter to forum.php or the (3) page or (4) order parameter to (a) board_entry.php or (b) forum_entry.php.
Max CVSS
4.3
EPSS Score
0.22%
Published
2015-02-04
Updated
2017-09-08
Cross-site scripting (XSS) vulnerability in my little forum before 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the back parameter to index.php.
Max CVSS
4.3
EPSS Score
0.29%
Published
2015-02-16
Updated
2019-03-13
2 vulnerabilities found