CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Phpmywind: >> Phpmywind >> 5.5 Security Vulnerabilities

CVE-2018-17133

admin/web_config.php in PHPMyWind 5.5 allows Admin users to execute arbitrary code via the rewrite url setting.

CVSS Score

7.2

EPSS Score

0.004

Published

2018-09-17

CVE-2018-17134

admin/web_config.php in PHPMyWind 5.5 allows Admin users to execute arbitrary code via the cfg_author field in conjunction with a crafted cfg_webpath field.

CVSS Score

7.2

EPSS Score

0.004

Published

2018-09-17

CVE-2018-11487

PHPMyWind 5.5 has XSS via the cid parameter to newsshow.php, or the query string to news.php or about.php.

CVSS Score

6.1

EPSS Score

0.003

Published

2018-05-26

Prev

Page 2

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved