Vulnerabilities > Nexusphp > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-30 | CVE-2020-24769 | SQL Injection vulnerability in Nexusphp 1.5 SQL injection vulnerability in takeconfirm.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the classes parameter. | 7.5 |
| 2022-03-30 | CVE-2020-24770 | SQL Injection vulnerability in Nexusphp 1.5 SQL injection vulnerability in modrules.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
| 2022-03-30 | CVE-2020-24771 | Incorrect Authorization vulnerability in Nexusphp 1.5 Incorrect access control in NexusPHP 1.5.beta5.20120707 allows unauthorized attackers to access published content. | 7.5 |
| 2017-08-31 | CVE-2017-14076 | SQL Injection vulnerability in Nexusphp 1.5 SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the id parameter to linksmanage.php in an editlink action. | 7.5 |
| 2017-08-31 | CVE-2017-14069 | SQL Injection vulnerability in Nexusphp 1.5 SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the usernw array parameter to nowarn.php. | 7.5 |
| 2017-08-24 | CVE-2017-13669 | SQL Injection vulnerability in Nexusphp 1.5 SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the setanswered parameter to staffbox.php. | 7.5 |
| 2017-08-24 | CVE-2017-12679 | SQL Injection vulnerability in Nexusphp 1.5 SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the delcheater parameter to cheaterbox.php. | 7.5 |
| 2017-08-21 | CVE-2017-12981 | SQL Injection vulnerability in Nexusphp 1.5 NexusPHP 1.5.beta5.20120707 has SQL Injection in forummanage.php via the sort parameter in an addforum action. | 7.5 |