Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Mm Forum Project Subscribe
Filtered by product Mm Forum
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-15516 1 Mm Forum Project 1 Mm Forum 2021-07-21 5.8 MEDIUM 5.4 MEDIUM
The mm_forum extension through 1.9.5 for TYPO3 allows XSS that can be exploited via CSRF.
CVE-2014-6299 1 Mm Forum Project 1 Mm Forum 2014-10-06 6.8 MEDIUM N/A
Cross-site request forgery (CSRF) vulnerability in the mm_forum extension before 1.9.3 for TYPO3 allows remote attackers to hijack the authentication of users for requests that create posts via unspecified vectors.
CVE-2014-6297 1 Mm Forum Project 1 Mm Forum 2014-10-06 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the mm_forum extension before 1.9.3 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2014-6298 1 Mm Forum Project 1 Mm Forum 2014-10-06 7.5 HIGH N/A
Unrestricted file upload vulnerability in the mm_forum extension before 1.9.3 for TYPO3 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via unspecified vectors.