Unknown · Simple It Discussion Forum · CVE-2026-5672
Name of the Vulnerable Software and Affected Versions
Simple IT Discussion Forum version 1.0
Description
A SQL injection issue exists due to the manipulation of the `cat id` argument in the /edit-category.php file. This can be exploited remotely. The exploit has been publicly disclosed.
Recommendations
Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the /edit-category.php file.