Arab Portal: >> Arab Portal >> 2.0.1_stable Security Vulnerabilities
Multiple cross-site scripting (XSS) vulnerabilities in Arab Portal 2.0.1 stable allow remote attackers to inject arbitrary web script or HTML via the (1) adminJump and (2) forum_middle parameters in (a) forum.php, and the (3) form parameter in (b) members.php, (c) pm.php, and (d) mail.php.
CVSS Score
2.6
EPSS Score
0.003
Published
2006-04-07
SQL injection vulnerability in forum.php in Arab Portal 2.0.1 stable allows remote attackers to execute arbitrary SQL commands via the mineID parameter.
CVSS Score
7.5
EPSS Score
0.005
Published
2006-04-07