Show filters
27 Total Results
Displaying 21-27 of 27
Sort by:
Attacker Value
Unknown

CVE-2017-12909

Disclosure Date: August 17, 2017 (last updated November 26, 2024)
SQL injection vulnerability in modtask.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the userid parameter.
0
0
Attacker Value
Unknown

CVE-2017-12908

Disclosure Date: August 17, 2017 (last updated November 26, 2024)
SQL injection vulnerability in takeconfirm.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the conusr parameter.
0
0
Attacker Value
Unknown

CVE-2017-12798

Disclosure Date: August 10, 2017 (last updated November 26, 2024)
Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via the q parameter to searchsuggest.php.
0
0
Attacker Value
Unknown

CVE-2017-12777

Disclosure Date: August 09, 2017 (last updated November 26, 2024)
Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via some parameter to usersearch.php.
0
0
Attacker Value
Unknown

CVE-2017-12655

Disclosure Date: August 07, 2017 (last updated November 26, 2024)
Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via the query parameter to log.php in a dailylog action.
0
0
Attacker Value
Unknown

CVE-2017-11651

Disclosure Date: July 26, 2017 (last updated November 26, 2024)
NexusPHP V1.5 has XSS via a javascript: or data: URL in a UBBCode url tag.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2011-4026

Disclosure Date: October 21, 2011 (last updated October 04, 2023)
SQL injection vulnerability in thanks.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
0
0
View More Topics  < Previous