Vendor
OURPHP
Products
1
CVEs
4
Across products
4
Status
Private
Products
1- 4 CVEs
Recent CVEs
4| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-30211 | Cri | 0.64 | 9.8 | 0.01 | Apr 26, 2023 | OURPHP <= 7.2.0 is vulnerable to SQL Injection. | ||
| CVE-2025-51965 | Med | 0.40 | 6.1 | 0.00 | Aug 14, 2025 | OURPHP thru 8.6.1 is vulnerable to Cross-Site Scripting (XSS) via the "Name" field of the "Complete Profile" functionality under the "My User Center" page, which can be accessed after registering through the front-end interface. | ||
| CVE-2023-30212 | Med | 0.40 | 6.1 | 0.08 | Apr 26, 2023 | OURPHP <= 7.2.0 is vulnerale to Cross Site Scripting (XSS) via /client/manage/ourphp_out.php. | ||
| CVE-2023-30210 | Med | 0.40 | 6.1 | 0.01 | Apr 26, 2023 | OURPHP <= 7.2.0 is vulnerable to Cross Site Scripting (XSS) via ourphp_tz.php. |
- risk 0.64cvss 9.8epss 0.01
OURPHP <= 7.2.0 is vulnerable to SQL Injection.
- risk 0.40cvss 6.1epss 0.00
OURPHP thru 8.6.1 is vulnerable to Cross-Site Scripting (XSS) via the "Name" field of the "Complete Profile" functionality under the "My User Center" page, which can be accessed after registering through the front-end interface.
- risk 0.40cvss 6.1epss 0.08
OURPHP <= 7.2.0 is vulnerale to Cross Site Scripting (XSS) via /client/manage/ourphp_out.php.
- risk 0.40cvss 6.1epss 0.01
OURPHP <= 7.2.0 is vulnerable to Cross Site Scripting (XSS) via ourphp_tz.php.