Vulnerabilities (CVE)

Filtered by vendor Roman Bogorodskiy Subscribe
Filtered by product Nforum
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-0882 1 Roman Bogorodskiy 1 Nforum 2024-02-28 7.5 HIGH N/A
Multiple SQL injection vulnerabilities in nForum 1.5 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to showtheme.php and the (2) user parameter to userinfo.php.