Vendor
Yahei-PHP
Products
2
CVEs
2
Across products
2
Status
Private
Products
2- 1 CVE
- 1 CVE
Recent CVEs
2| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-9238 | Med | 0.43 | 6.1 | 0.02 | Apr 4, 2018 | proberv.php in Yahei-PHP Proberv 0.4.7 has XSS via the funName parameter. | ||
| CVE-2019-25280 | Med | 0.40 | 6.1 | 0.00 | Jan 8, 2026 | Yahei-PHP Prober 0.4.7 contains a remote HTML injection vulnerability that allows attackers to execute arbitrary HTML code through the 'speed' GET parameter. Attackers can inject malicious HTML code in the 'speed' parameter of prober.php to trigger cross-site scripting in user… |
- risk 0.43cvss 6.1epss 0.02
proberv.php in Yahei-PHP Proberv 0.4.7 has XSS via the funName parameter.
- risk 0.40cvss 6.1epss 0.00
Yahei-PHP Prober 0.4.7 contains a remote HTML injection vulnerability that allows attackers to execute arbitrary HTML code through the 'speed' GET parameter. Attackers can inject malicious HTML code in the 'speed' parameter of prober.php to trigger cross-site scripting in user…