4 matches found
CVE-2024-5312
PHP Server Monitor, version 3.2.0, is vulnerable to an XSS via the /phpservermon-3.2.0/vendor/phpmailer/phpmailer/testscript/index.php page in all visible parameters. An attacker could create a specially crafted URL, send it to a victim and retrieve their session details...
CVE-2024-5312 Cross-Site Scripting vulnerability in PHP Server Monitor
PHP Server Monitor, version 3.2.0, is vulnerable to an XSS via the /phpservermon-3.2.0/vendor/phpmailer/phpmailer/testscript/index.php page in all visible parameters. An attacker could create a specially crafted URL, send it to a victim and retrieve their session details...
CVE-2024-5312 Cross-Site Scripting vulnerability in PHP Server Monitor
PHP Server Monitor, version 3.2.0, is vulnerable to an XSS via the /phpservermon-3.2.0/vendor/phpmailer/phpmailer/testscript/index.php page in all visible parameters. An attacker could create a specially crafted URL, send it to a victim and retrieve their session details...
CVE-2024-5312
CVE-2024-5312 describes an XSS in PHP Server Monitor 3.2.0. Affected component: the index.php under /vendor/phpmailer/phpmailer/test_script/index.php, where all visible parameters are vulnerable. An attacker can craft a URL that, when visited by a user, could expose the victim’s session details. ...