Shodan
Vulnerabilities
Vulnerable Software
Mylittleforum:  >> My Little Forum  >> 2.2.4  Security Vulnerabilities
CVE-2019-12253
my little forum before 2.4.20 allows CSRF to delete posts, as demonstrated by mode=posting&delete_posting.
CVSS Score
6.5
EPSS Score
0.001
Published
2019-05-21
CVE-2015-1435
Cross-site scripting (XSS) vulnerability in my little forum before 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the back parameter to index.php.
CVSS Score
4.3
EPSS Score
0.009
Published
2015-02-16
CVE-2015-1434
Multiple SQL injection vulnerabilities in my little forum before 2.3.4 allow remote administrators to execute arbitrary SQL commands via the (1) letter parameter in a user action or (2) edit_category parameter to index.php.
CVSS Score
6.5
EPSS Score
0.004
Published
2015-02-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved