RSS   Podatności dla 'Mywebsql'   RSS

2019-02-11
 
CVE-2019-7731

CWE-94
 

 
MyWebSQL 3.7 has a remote code execution (RCE) vulnerability after an attacker writes shell code into the database, and executes the Backup Database function with a .php filename for the backup's archive file.

 
 
CVE-2019-7730

CWE-352
 

 
MyWebSQL 3.7 has a Cross-site request forgery (CSRF) vulnerability for deleting a database via the /?q=wrkfrm&type=databases URI.

 
2019-02-06
 
CVE-2019-7544

CWE-79
 

 
An issue was discovered in MyWebSQL 3.7. The Add User function of the User Manager pages has a Stored Cross-site Scripting (XSS) vulnerability in the User Name Field.

 
2017-07-17
 
CVE-2017-1000011

 

 
MyWebSQL version 3.6 is vulnerable to stored XSS in the database manager component resulting in account takeover or stealing of information

 
2014-09-12
 
CVE-2014-4735

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in MyWebSQL 3.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the table parameter to index.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top