Pearadmin: >> Pear Admin Think Security Vulnerabilities
SQL Injection in pear-admin-think version 2.1.2, allows attackers to execute arbitrary code and escalate privileges via crafted GET request to Crud.php.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-08-11
A Cross Site Scripting (XSS) vulnerability exists in pearadmin pear-admin-think <=5.0.6, which allows a login account to access arbitrary functions and cause stored XSS through a fake User-Agent.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-03-29