Vulnerabilities > Simple PHP Forum

DATE	CVE	VULNERABILITY TITLE	RISK
2007-10-18	CVE-2007-5564	Cross-Site Scripting vulnerability in Simple PHP Forum Simple PHP Forum 0.6.1 Multiple cross-site scripting (XSS) vulnerabilities in NSSboard (formerly Simple PHP Forum) 6.1 allow remote attackers to inject arbitrary web script or HTML via (1) HTML tags when BBcode is disabled; or the (2) user, (3) email, or (4) Real Name fields in a profile. network high complexity simple-php-forum CWE-79	2.6
2007-03-02	CVE-2006-7088	SQL-Injection vulnerability in Simple PHP Forum Simple PHP Forum 0.1/0.2/0.3 Multiple SQL injection vulnerabilities in Simple PHP Forum before 0.4 allow remote attackers to execute arbitrary SQL commands via the username parameter to (1) logon_user.php and (2) update_profile.php. network low complexity simple-php-forum	7.5

Vulnerabilities > Simple PHP Forum {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Simple PHP Forum"}]}