Vulnerability Details CVE-2015-6518
Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, (2) droptable parameter, or (3) table parameter to phpliteadmin.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.5%
CVSS Severity
CVSS v2 Score 4.3
References
- http://packetstormsecurity.com/files/132580/phpLiteAdmin-1.1-Cross-Site-Request-Forgery-Cross-Site-Scripting.html
- http://www.securityfocus.com/archive/1/535936/100/0/threaded
- http://packetstormsecurity.com/files/132580/phpLiteAdmin-1.1-Cross-Site-Request-Forgery-Cross-Site-Scripting.html
- http://www.securityfocus.com/archive/1/535936/100/0/threaded
Products affected by CVE-2015-6518
-
cpe:2.3:a:phpliteadmin:phpliteadmin:1.1