CVE-2025-6845 – “Simple Forum SQL Injection Vulnerability”

June 29, 2025

CVE ID : CVE-2025-6845

Published : June 29, 2025, 5:15 a.m. | 2 hours, 6 minutes ago

Description : A vulnerability was found in code-projects Simple Forum 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /register1.php. The manipulation of the argument User leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6846 – “Code-Projects Simple Forum SQL Injection Vulnerability”

Next Article CVE-2025-6462 – WordPress EZ SQL Reports Stored Cross-Site Scripting Vulnerability

Highlights

CVE-2025-2892 – WordPress All in One SEO Plugin Stored Cross-Site Scripting Vulnerability

May 19, 2025

CVE ID : CVE-2025-2892

Published : May 19, 2025, 5:15 a.m. | 1 hour, 45 minutes ago

Description : The All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the post Meta Description and Canonical URL parameters in all versions up to, and including, 4.8.1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

Microsoft’s Copilot+ has been here over a year and I still don’t care about it — but I do wish I had one of its features

SteelSeries’ latest wireless mouse is cheap and colorful — but is this the one to spend your money on?

DistroWatch Weekly, Issue 1128

Your Slack app is getting a big upgrade – here’s how to try the new AI features

How Code Feedback MCP Enhances AI-Generated Code Quality

How Code Feedback MCP Enhances AI-Generated Code Quality

PRSS Site Creator – Create Blogs and Websites from Your Desktop

Say hello to ECMAScript 2025

Microsoft’s Copilot+ has been here over a year and I still don’t care about it — but I do wish I had one of its features

Microsoft’s Copilot+ has been here over a year and I still don’t care about it — but I do wish I had one of its features

SteelSeries’ latest wireless mouse is cheap and colorful — but is this the one to spend your money on?

Microsoft confirms Windows 11 25H2, might make Windows more stable

CVE-2025-6845 – “Simple Forum SQL Injection Vulnerability”

⚡ Weekly Recap: Chrome 0-Day, 7.3 Tbps DDoS, MFA Bypass Tricks, Banking Trojan and More

China-linked Salt Typhoon Exploits Critical Cisco Vulnerability to Target Canadian Telecom

LeetCode Meditations: A Visualized Tour of DSA Concepts (A Handbook)

WordPress Sites Turned Weapon: How VexTrio and Affiliates Run a Global Scam Network

Enterprise Asset Management Systems: Choosing the Right EAM Software for Your Business

CVE-2025-5223 – CVE-2022-36462: Apache HTTP Server Remote Code Execution

CVE-2025-2892 – WordPress All in One SEO Plugin Stored Cross-Site Scripting Vulnerability

46,000+ Grafana Instances Exposed to Malicious Account Takeover Attacks

This AR headset is changing how surgeons see inside their patients

6 Best Free and Open Source Linux Project Management Software

CVE-2025-6845 – “Simple Forum SQL Injection Vulnerability”

Related Posts