VYPR

twmap

by Happyman

Source repositories

CVEs (2)

  • CVE-2021-43696MedNov 29, 2021
    risk 0.40cvss 6.1epss 0.01

    twmap v2.91_v4.33 is affected by a Cross Site Scripting (XSS) vulnerability. In file list.php, the exit function will terminate the script and print the message to the user. The message will contain $_REQUEST then there is a XSS vulnerability.

  • CVE-2019-25100MedJan 8, 2023
    risk 0.29cvss 5.5epss 0.01

    A vulnerability was found in happyman twmap. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file twmap3/data/ajaxCRUD/pointdata2.php. The manipulation of the argument id leads to sql injection. Upgrading to version v2.9_v4.31…