23 matches found
EUVD-2018-13348
Malware in sbrugna...
EUVD-2017-0732
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2017-0378
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - XSS exists in the loginform function in views/helpers.php in Phamm before 0.6.7, exploitable via the PATHINFO to main.php. CVE-2017-0378 Note that Nessus relies...
Linux Distros Unpatched Vulnerability : CVE-2018-20806
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Phamm aka PHP LDAP Virtual Hosting Manager 0.6.8 allows XSS via the login page the /public/main.php action parameter. CVE-2018-20806 Note that Nessus relies on...
Phamm Permission License and Access Control Vulnerabilities
Phamm a.k.a. PHP LDAP Virtual Hosting Manager is a PHP-based web hosting manager that supports multiple roles with access rights to manage virtual services using an LDAP backend. A privilege permission and access control vulnerability exists in Phamm version 0.6.8. A remote attacker can exploit...
CVE-2018-20806
Phamm aka PHP LDAP Virtual Hosting Manager 0.6.8 allows XSS via the login page the /public/main.php action parameter...
CVE-2018-20806
Phamm aka PHP LDAP Virtual Hosting Manager 0.6.8 allows XSS via the login page the /public/main.php action parameter...
UBUNTU-CVE-2018-20806
Phamm aka PHP LDAP Virtual Hosting Manager 0.6.8 allows XSS via the login page the /public/main.php action parameter...
Design/Logic Flaw
Phamm aka PHP LDAP Virtual Hosting Manager 0.6.8 allows XSS via the login page the /public/main.php action parameter...
CVE-2018-20806
Phamm aka PHP LDAP Virtual Hosting Manager 0.6.8 allows XSS via the login page the /public/main.php action parameter...
CVE-2018-20806
Removed by vendor...
CVE-2018-20806
Phamm aka PHP LDAP Virtual Hosting Manager 0.6.8 allows XSS via the login page the /public/main.php action parameter...
CVE-2018-20806
Phamm (PHP LDAP Virtual Hosting Manager) 0.6.8 is vulnerable to XSS on the login page via the /public/main.php action parameter. This is documented across multiple sources (e.g., CVE-2018-20806 in NVD/NIST and OSV, CNVD, UBUNTU CVE entries). The vulnerability affects Phamm 0.6.8 and allows inject...
Phamm helpers.php Cross-Site Scripting (CVE-2017-0378)
A reflected cross-site scripting vulnerability exists in Phamm. The vulnerability is due to insufficient validation of user-supplied input within views/helpers.php. A remote, unauthenticated attacker could exploit this vulnerability by enticing an user to click a maliciously crafted link or open ...
Phamm 'login_form' function cross-site scripting vulnerability
Phamm is a PHP-based web hosting manager that supports multiple roles with access rights to manage virtual services using an LDAP backend. A cross-site scripting vulnerability exists in the 'loginform' function of the views/helpers.php file in versions of Phamm prior to 0.6.7. A remote attacker c...
CVE-2017-0378
XSS exists in the loginform function in views/helpers.php in Phamm before 0.6.7, exploitable via the PATHINFO to main.php...
Cross site scripting
XSS exists in the loginform function in views/helpers.php in Phamm before 0.6.7, exploitable via the PATHINFO to main.php...
UBUNTU-CVE-2017-0378
XSS exists in the loginform function in views/helpers.php in Phamm before 0.6.7, exploitable via the PATHINFO to main.php...
CVE-2017-0378
XSS exists in the loginform function in views/helpers.php in Phamm before 0.6.7, exploitable via the PATHINFO to main.php...
CVE-2017-0378
XSS exists in the loginform function in views/helpers.php in Phamm before 0.6.7, exploitable via the PATHINFO to main.php...