Vulnerabilities > Nexusphp > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-01-19 CVE-2022-46887 SQL Injection vulnerability in Nexusphp 1.5
Multiple SQL injection vulnerabilities in NexusPHP before 1.7.33 allow remote attackers to execute arbitrary SQL commands via the conuser[] parameter in takeconfirm.php; the delcheater parameter in cheaterbox.php; or the usernw parameter in nowarn.php.
network
low complexity
nexusphp CWE-89
critical
 9.8
9.8
2022-03-30 CVE-2020-24769 SQL Injection vulnerability in Nexusphp 1.5
SQL injection vulnerability in takeconfirm.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the classes parameter.
network
low complexity
nexusphp CWE-89
critical
 9.8
9.8
2022-03-30 CVE-2020-24770 SQL Injection vulnerability in Nexusphp 1.5
SQL injection vulnerability in modrules.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
nexusphp CWE-89
critical
 9.8
9.8
2017-08-31 CVE-2017-14076 SQL Injection vulnerability in Nexusphp 1.5
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the id parameter to linksmanage.php in an editlink action.
network
low complexity
nexusphp CWE-89
critical
 9.8
9.8
2017-08-31 CVE-2017-14069 SQL Injection vulnerability in Nexusphp 1.5
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the usernw array parameter to nowarn.php.
network
low complexity
nexusphp CWE-89
critical
 9.8
9.8
2017-08-24 CVE-2017-13669 SQL Injection vulnerability in Nexusphp 1.5
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the setanswered parameter to staffbox.php.
network
low complexity
nexusphp CWE-89
critical
 9.8
9.8
2017-08-24 CVE-2017-12679 SQL Injection vulnerability in Nexusphp 1.5
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the delcheater parameter to cheaterbox.php.
network
low complexity
nexusphp CWE-89
critical
 9.8
9.8
2017-08-21 CVE-2017-12981 SQL Injection vulnerability in Nexusphp 1.5
NexusPHP 1.5.beta5.20120707 has SQL Injection in forummanage.php via the sort parameter in an addforum action.
network
low complexity
nexusphp CWE-89
critical
 9.8
9.8