Phpliteadmin
Products
2- 3 CVEs
- 1 CVE
Recent CVEs
4| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2015-6518 | 0.03 | — | 0.01 | Aug 18, 2015 | Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, (2) droptable parameter, or (3) table parameter to phpliteadmin.php. | |||
| CVE-2015-6517 | 0.03 | — | 0.00 | Aug 18, 2015 | Cross-site request forgery (CSRF) vulnerability in phpLiteAdmin 1.1 allows remote attackers to hijack the authentication of users for requests that drop database tables via the droptable parameter to phpliteadmin.php. | |||
| CVE-2021-46709 | 0.00 | — | 0.00 | Mar 13, 2022 | phpLiteAdmin through 1.9.8.2 allows XSS via the index.php newRows parameter (aka num or number). | |||
| CVE-2018-10362 | 0.00 | — | 0.00 | Apr 25, 2018 | An issue was discovered in phpLiteAdmin 1.9.5 through 1.9.7.1. Due to loose comparison with '==' instead of '===' in classes/Authorization.php for the user-provided login password, it is possible to login with a simpler password if the password has the form of a power in… |
- CVE-2015-6518Aug 18, 2015risk 0.03cvss —epss 0.01
Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, (2) droptable parameter, or (3) table parameter to phpliteadmin.php.
- CVE-2015-6517Aug 18, 2015risk 0.03cvss —epss 0.00
Cross-site request forgery (CSRF) vulnerability in phpLiteAdmin 1.1 allows remote attackers to hijack the authentication of users for requests that drop database tables via the droptable parameter to phpliteadmin.php.
- CVE-2021-46709Mar 13, 2022risk 0.00cvss —epss 0.00
phpLiteAdmin through 1.9.8.2 allows XSS via the index.php newRows parameter (aka num or number).
- CVE-2018-10362Apr 25, 2018risk 0.00cvss —epss 0.00
An issue was discovered in phpLiteAdmin 1.9.5 through 1.9.7.1. Due to loose comparison with '==' instead of '===' in classes/Authorization.php for the user-provided login password, it is possible to login with a simpler password if the password has the form of a power in…