Myt
by Myt Project
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-25713 | Hig | 0.46 | 7.1 | 0.00 | Apr 12, 2026 | MyT-PM 1.5.1 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the Charge[group_total] parameter. Attackers can submit crafted POST requests to the /charge/admin endpoint with… | ||
| CVE-2019-13346 | Med | 0.43 | 6.1 | 0.02 | Jul 17, 2019 | In MyT 1.5.1, the User[username] parameter has XSS. |
- risk 0.46cvss 7.1epss 0.00
MyT-PM 1.5.1 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the Charge[group_total] parameter. Attackers can submit crafted POST requests to the /charge/admin endpoint with…
- risk 0.43cvss 6.1epss 0.02
In MyT 1.5.1, the User[username] parameter has XSS.