Show filters
27 Total Results
Displaying 11-20 of 27
Sort by:
Attacker Value
Unknown

CVE-2017-14076

Disclosure Date: August 31, 2017 (last updated November 26, 2024)
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the id parameter to linksmanage.php in an editlink action.
0
0
Attacker Value
Unknown

CVE-2017-14070

Disclosure Date: August 31, 2017 (last updated November 26, 2024)
Cross Site Scripting (XSS) exists in NexusPHP 1.5.beta5.20120707 via the PATH_INFO to ipsearch.php, related to PHP_SELF.
0
0
Attacker Value
Unknown

CVE-2017-14069

Disclosure Date: August 31, 2017 (last updated November 26, 2024)
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the usernw array parameter to nowarn.php.
0
0
Attacker Value
Unknown

CVE-2017-12679

Disclosure Date: August 24, 2017 (last updated November 26, 2024)
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the delcheater parameter to cheaterbox.php.
0
0
Attacker Value
Unknown

CVE-2017-13669

Disclosure Date: August 24, 2017 (last updated November 26, 2024)
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the setanswered parameter to staffbox.php.
0
0
Attacker Value
Unknown

CVE-2017-12981

Disclosure Date: August 21, 2017 (last updated November 26, 2024)
NexusPHP 1.5.beta5.20120707 has SQL Injection in forummanage.php via the sort parameter in an addforum action.
0
0
Attacker Value
Unknown

CVE-2017-12776

Disclosure Date: August 18, 2017 (last updated November 26, 2024)
SQL injection vulnerability in reports.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the delreport parameter.
0
0
Attacker Value
Unknown

CVE-2017-12680

Disclosure Date: August 18, 2017 (last updated November 26, 2024)
Cross-Site Scripting (XSS) exists in NexusPHP 1.5 via the type parameter to shoutbox.php.
0
0
Attacker Value
Unknown

CVE-2017-12907

Disclosure Date: August 17, 2017 (last updated November 26, 2024)
Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via the url path to usersearch.php.
0
0
Attacker Value
Unknown

CVE-2017-12910

Disclosure Date: August 17, 2017 (last updated November 26, 2024)
SQL injection vulnerability in massmail.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the or parameter.
0
0
View More Topics  < Previous  Next >