Vanillaforums Vanilla_forums
2 CVEs affecting Vanillaforums Vanilla_forums. Latest disclosed: 2015-02-25. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2014-9685 | | 2015-02-25 | Multiple cross-site scripting (XSS) vulnerabilities in Vanilla Forums before 2.0.18.13 and 2.1.x before 2.1.1 allow remote attackers to inject arbitrary web sc… | |
CVE-2012-4954 | | 2012-11-15 | The edit-profile page in Vanilla Forums before 2.1a32 allows remote authenticated users to modify arbitrary profile settings by replacing the UserID value duri… |