Fabianros Simple Forum
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Fabianros Simple Forum.
By the Year
In 2026 there have been 0 vulnerabilities in Fabianros Simple Forum. Last year, in 2025 Simple Forum had 8 security vulnerabilities published. Right now, Simple Forum is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 8 | 7.84 |
It may take a day or so for new Simple Forum vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Fabianros Simple Forum Security Vulnerabilities
Simple Forum 1.0 Path Traversal Remote via /forum_downloadfile.php
CVE-2025-6866
4.3 - Medium
- June 29, 2025
A vulnerability has been found in code-projects Simple Forum 1.0 and classified as critical. This vulnerability affects unknown code of the file /forum_downloadfile.php. The manipulation of the argument filename leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Directory traversal
CVE-2025-6849: Simple Forum 1.0 XSS via forum_edit1.php text arg
CVE-2025-6849
4.1 - Medium
- June 29, 2025
A vulnerability, which was classified as problematic, was found in code-projects Simple Forum 1.0. Affected is an unknown function of the file /forum_edit1.php. The manipulation of the argument text leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
XSS
SQLi via 'File' in /forum1.php of code-projects Simple Forum 1.0
CVE-2025-6850
8.8 - High
- June 29, 2025
A vulnerability has been found in code-projects Simple Forum 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /forum1.php. The manipulation of the argument File leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Simple Forum 1.0 - SQLi in /forum_edit.php via iii param
CVE-2025-6847
9.8 - Critical
- June 29, 2025
A vulnerability classified as critical was found in code-projects Simple Forum 1.0. This vulnerability affects unknown code of the file /forum_edit.php. The manipulation of the argument iii leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Unrestricted File Upload in Simple Forum 1.0 via /forum1.php
CVE-2025-6848
8.8 - High
- June 29, 2025
A vulnerability, which was classified as critical, has been found in code-projects Simple Forum 1.0. This issue affects some unknown processing of the file /forum1.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Unrestricted File Upload
Critical SQLi in Simple Forum 1.0 via /forum_viewfile.php
CVE-2025-6846
7.3 - High
- June 29, 2025
A vulnerability classified as critical has been found in code-projects Simple Forum 1.0. This affects an unknown part of the file /forum_viewfile.php. The manipulation of the argument Name leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Remote SQLi via /register1.php in Simple Forum 1.0 – Critical
CVE-2025-6845
9.8 - Critical
- June 29, 2025
A vulnerability was found in code-projects Simple Forum 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /register1.php. The manipulation of the argument User leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Simple Forum 1.0 - Critical SQLi via /signin.php User
CVE-2025-6844
9.8 - Critical
- June 29, 2025
A vulnerability was found in code-projects Simple Forum 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /signin.php. The manipulation of the argument User leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Fabianros Simple Forum or by Fabianros? Click the Watch button to subscribe.
