VYPR

OURPHP

by OURPHP

CVEs (4)

  • CVE-2023-30211CriApr 26, 2023
    risk 0.64cvss 9.8epss 0.01

    OURPHP <= 7.2.0 is vulnerable to SQL Injection.

  • CVE-2025-51965MedAug 14, 2025
    risk 0.40cvss 6.1epss 0.00

    OURPHP thru 8.6.1 is vulnerable to Cross-Site Scripting (XSS) via the "Name" field of the "Complete Profile" functionality under the "My User Center" page, which can be accessed after registering through the front-end interface.

  • CVE-2023-30212MedApr 26, 2023
    risk 0.40cvss 6.1epss 0.08

    OURPHP <= 7.2.0 is vulnerale to Cross Site Scripting (XSS) via /client/manage/ourphp_out.php.

  • CVE-2023-30210MedApr 26, 2023
    risk 0.40cvss 6.1epss 0.01

    OURPHP <= 7.2.0 is vulnerable to Cross Site Scripting (XSS) via ourphp_tz.php.