Code-Projects Simple It Discussion Forum vulnerabilities

CVE-2026-6031 [MEDIUM] CWE-74 CVE-2026-6031: A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0. This affects an unkn A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0. This affects an unknown function of the file /add-category-function.php. Such manipulation of the argument Category leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.

CVE-2026-6003 [MEDIUM] CWE-79 CVE-2026-6003: A security vulnerability has been detected in code-projects Simple IT Discussion Forum 1.0. This iss A security vulnerability has been detected in code-projects Simple IT Discussion Forum 1.0. This issue affects some unknown processing of the file /admin/user.php. Such manipulation of the argument fname leads to cross site scripting. The attack may be performed from remote. The exploit has been disclosed publicly and may be used.

CVE-2026-6004 [MEDIUM] CWE-74 CVE-2026-6004: A vulnerability was detected in code-projects Simple IT Discussion Forum 1.0. Impacted is an unknown A vulnerability was detected in code-projects Simple IT Discussion Forum 1.0. Impacted is an unknown function of the file /delete-category.php. Performing a manipulation of the argument cat_id results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and may be used.

CVE-2026-5961 [MEDIUM] CWE-74 CVE-2026-5961: A security vulnerability has been detected in code-projects Simple IT Discussion Forum 1.0. This vul A security vulnerability has been detected in code-projects Simple IT Discussion Forum 1.0. This vulnerability affects unknown code of the file /topic-details.php. The manipulation of the argument post_id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used.

CVE-2026-5827 [MEDIUM] CWE-74 CVE-2026-5827: A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0. Impacted is an unkno A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0. Impacted is an unknown function of the file /question-function.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2026-5826 [MEDIUM] CWE-79 CVE-2026-5826: A flaw has been found in code-projects Simple IT Discussion Forum 1.0. This issue affects some unkno A flaw has been found in code-projects Simple IT Discussion Forum 1.0. This issue affects some unknown processing of the file /edit-category.php. Executing a manipulation of the argument Category can lead to cross site scripting. The attack can be launched remotely. The exploit has been published and may be used.

CVE-2026-5828 [MEDIUM] CWE-74 CVE-2026-5828: A vulnerability was found in code-projects Simple IT Discussion Forum 1.0. The affected element is a A vulnerability was found in code-projects Simple IT Discussion Forum 1.0. The affected element is an unknown function of the file /functions/addcomment.php. The manipulation of the argument postid results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used.

CVE-2026-5829 [MEDIUM] CWE-74 CVE-2026-5829: A vulnerability was determined in code-projects Simple IT Discussion Forum 1.0. The impacted element A vulnerability was determined in code-projects Simple IT Discussion Forum 1.0. The impacted element is an unknown function of the file /pages/content.php. This manipulation of the argument post_id causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.

CVE-2026-5985 [MEDIUM] CWE-74 CVE-2026-5985: A security flaw has been discovered in code-projects Simple IT Discussion Forum 1.0. The affected el A security flaw has been discovered in code-projects Simple IT Discussion Forum 1.0. The affected element is an unknown function of the file /crud.php. The manipulation of the argument user_Id results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks.

CVE-2026-5672 [MEDIUM] CWE-74 CVE-2026-5672: A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0. Affected by this iss A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0. Affected by this issue is some unknown functionality of the file /edit-category.php of the component Parameter Handler. The manipulation of the argument cat_id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ