Cfmagic Magic Forum Personal vulnerabilities
2 known vulnerabilities affecting cfmagic/magic_forum_personal.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2005-4071P3HIGHCVSS 7.5PoC≤ 2.52005-12-08
CVE-2005-4071 [HIGH] CWE-89 CVE-2005-4071: Multiple SQL injection vulnerabilities in CFMagic Magic Forum Personal 2.5 and earlier allow remote
Multiple SQL injection vulnerabilities in CFMagic Magic Forum Personal 2.5 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) ForumID parameter in view_forum.cfm, and (2) ForumID, (3) Thread, and (4) ThreadID parameters in view_thread.cfm.
nvd
CVE-2005-4072P4MEDIUMCVSS 4.3≤ 2.52005-12-08
CVE-2005-4072 [MEDIUM] CVE-2005-4072: Cross-site scripting (XSS) vulnerability in CFMagic Magic Forum Personal 2.5 and earlier allows remo
Cross-site scripting (XSS) vulnerability in CFMagic Magic Forum Personal 2.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the Words parameter in search_forums.cfm, as used in the "Search For:" field.
nvd