Show filters
8 Total Results
Displaying 1-8 of 8
Sort by:
Attacker Value
Unknown
CVE-2007-2942
Disclosure Date: May 31, 2007 (last updated October 04, 2023)
SQL injection vulnerability in user.php in My Little Forum 1.7 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
0
Attacker Value
Unknown
CVE-2007-2102
Disclosure Date: April 18, 2007 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in weblog.php in my little weblog allows remote attackers to inject arbitrary web script or HTML via the id parameter, a different vector than CVE-2006-6087.
0
Attacker Value
Unknown
CVE-2007-2103
Disclosure Date: April 18, 2007 (last updated October 04, 2023)
Multiple PHP remote file inclusion vulnerabilities in my little forum 1.7 allow remote attackers to execute arbitrary PHP code via a URL in the lang parameter to (1) admin.php and (2) timedifference.php.
0
Attacker Value
Unknown
CVE-2006-6087
Disclosure Date: November 24, 2006 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in weblog.php in my little weblog allows remote attackers to inject arbitrary web script or HTML via the action parameter.
0
Attacker Value
Unknown
CVE-2006-0471
Disclosure Date: January 31, 2006 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in the bbcode function in functions.php in my little homepage my little forum, as last modified in June 2005, allows remote attackers to inject arbitrary Javascript via a javascript URI in BBcode link tags.
0
Attacker Value
Unknown
CVE-2006-0472
Disclosure Date: January 31, 2006 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in guestbook.php in my little homepage my little guestbook, as last modified in March 2004, allows remote attackers to inject arbitrary Javascript via a javascript URI in BBcode link tags.
0
Attacker Value
Unknown
CVE-2006-0473
Disclosure Date: January 31, 2006 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in the bbcode function in weblog.php in my little homepage my little weblog, as last modified in April 2004, allows remote attackers to inject arbitrary Javascript via a javascript URI in BBcode link tags.
0
Attacker Value
Unknown
CVE-2005-3045
Disclosure Date: September 24, 2005 (last updated February 22, 2025)
SQL injection vulnerability in search.php in My Little Forum 1.5 and 1.6 beta allows remote attackers to execute arbitrary SQL commands via the phrase field.
0
