CVE-2021-26938

A stored XSS issue exists in henriquedornas 5.2.17 via online live chat. NOTE: Third parties report that no such product exists. That henriquedornas is the web design agency and 5.2.17 is simply the PHP version running on this hosts...

CVE-2021-26939

An information disclosure issue exists in henriquedornas 5.2.17 because an attacker can dump phpMyAdmin SQL content. NOTE: third parties report that this is a site-specific problem...

SUSE CVE-2021-26939

An information disclosure issue exists in henriquedornas 5.2.17 because an attacker can dump phpMyAdmin SQL content. NOTE: third parties report that this is a site-specific problem...

CVE-2021-26938

A stored XSS issue exists in henriquedornas 5.2.17 via online live chat. NOTE: Third parties report that no such product exists. That henriquedornas is the web design agency and 5.2.17 is simply the PHP version running on this hosts...

CVE-2021-26939

An information disclosure issue exists in henriquedornas 5.2.17 because an attacker can dump phpMyAdmin SQL content. NOTE: third parties report that this is a site-specific problem...

CVE-2021-26939

An information disclosure issue exists in henriquedornas 5.2.17 because an attacker can dump phpMyAdmin SQL content. NOTE: third parties report that this is a site-specific problem...

Information disclosure

DISPUTED An information disclosure issue exists in henriquedornas 5.2.17 because an attacker can dump phpMyAdmin SQL content. NOTE: third parties report that this is a site-specific problem...

Cross site scripting

DISPUTED A stored XSS issue exists in henriquedornas 5.2.17 via online live chat. NOTE: Third parties report that no such product exists. That henriquedornas is the web design agency and 5.2.17 is simply the PHP version running on this hosts...

CVE-2021-26939

An information disclosure issue exists in henriquedornas 5.2.17 because an attacker can dump phpMyAdmin SQL content. NOTE: third parties report that this is a site-specific problem...

CVE-2021-26939

CVE-2021-26939 affects henriquedornas 5.2.17 and is described in connected sources as an information-disclosure issue that allows an attacker to dump phpMyAdmin SQL content. The SUSE entry and PT-Security note this as a site-specific problem. PT-Security provides a mitigation suggestion: restrict...

CVE-2021-26938

A stored XSS issue exists in henriquedornas 5.2.17 via online live chat. NOTE: Third parties report that no such product exists. That henriquedornas is the web design agency and 5.2.17 is simply the PHP version running on this hosts...

CVE-2021-26938

The CVE-2021-26938 entry corresponds to a stored XSS vulnerability in Henriquedornas (web framework) via the online live chat, affecting version 5.2.17. CNVD describes the root cause as lack of proper validation of client-side data by the web application, enabling execution of client-side code. P...

Henriquedornas 跨站脚本漏洞

Henriquedornas is a web framework from Henriquedornas Brazil. Provides a framework for building websites. A cross-site scripting vulnerability exists in Henriquedornas that stems from a lack of proper validation of client-side data by the web application. An attacker can exploit this vulnerabilit...

PT-2021-17188 · Php +1 · Phpmyadmin +1

Name of the Vulnerable Software and Affected Versions: henriquedornas version 5.2.17 Description: An information disclosure issue exists because an attacker can dump phpMyAdmin SQL content. Third parties report that this is a site-specific problem. Recommendations: For henriquedornas version...