Mylittleforum » My Little Forum : Security Vulnerabilities, CVEs, (Sql injection)
Multiple SQL injection vulnerabilities in my little forum before 2.3.4 allow remote administrators to execute arbitrary SQL commands via the (1) letter parameter in a user action or (2) edit_category parameter to index.php.
Max CVSS
6.5
EPSS Score
1.56%
Published
2015-02-16
Updated
2019-03-13
SQL injection vulnerability in contact.php in My Little Forum allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2007-2942.
Max CVSS
7.5
EPSS Score
0.06%
Published
2010-06-02
Updated
2017-08-17
2 vulnerabilities found