CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

RedhatCVE•added 2026/01/07 9:32 a.m.•5 views

CVE-2019-16703

admin/infolistadd.php in PHPMyWind 5.6 has stored XSS...

6.1CVSS6.8AI score0.00328EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:31 a.m.•4 views

CVE-2019-16704

admin/infoclassupdate.php in PHPMyWind 5.6 has stored XSS...

4.8CVSS6.8AI score0.00323EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-7254

Malware in sbrugna...

4.8CVSS5.2AI score0.00323EPSS

Exploits1References2

NVD•added 2021/10/14 3:15 p.m.•11 views

CVE-2020-19964

A Cross Site Request Forgery CSRF vulnerability was discovered in PHPMyWind 5.6 which allows attackers to create a new administrator account without authentication...

6.5CVSS0.00136EPSS

Exploits1References3

Prion•added 2021/10/14 3:15 p.m.•11 views

Cross site request forgery (csrf)

A Cross Site Request Forgery CSRF vulnerability was discovered in PHPMyWind 5.6 which allows attackers to create a new administrator account without authentication...

4.3CVSS6.5AI score0.00136EPSS

Exploits1References3Affected Software1

CVE•added 2021/10/14 2:17 p.m.•35 views

CVE-2020-19964

CVE-2020-19964 concerns a CSRF vulnerability in PHPMyWind 5.6. The vulnerability allows an unauthenticated attacker to create a new administrator account, representing a potential elevation of privileges risk for affected deployments. The available connected sources consistently describe the flaw...

6.5CVSS6.4AI score0.00136EPSS

Exploits1References3Affected Software1

Prion•added 2021/09/07 8:15 p.m.•12 views

Remote code execution

PHPMyWind 5.6 is vulnerable to Remote Code Execution. Becase input is filtered without ", ?, =, ,...." In WriteConfig function, an attacker can inject php code to /include/config.cache.php file...

6.5CVSS7.1AI score0.03282EPSS

Exploits1References2Affected Software1

OSV•added 2019/09/23 4:15 a.m.•2 views

CVE-2019-16704

admin/infoclassupdate.php in PHPMyWind 5.6 has stored XSS...

4.8CVSS5.8AI score0.00323EPSS

Exploits1References1

NVD•added 2019/09/23 4:15 a.m.•9 views

CVE-2019-16704

admin/infoclassupdate.php in PHPMyWind 5.6 has stored XSS...

4.8CVSS5.2AI score0.00323EPSS

Exploits1References1

NVD•added 2019/09/23 4:15 a.m.•7 views

CVE-2019-16703

admin/infolistadd.php in PHPMyWind 5.6 has stored XSS...

6.1CVSS6.3AI score0.00328EPSS

Exploits1References1

Prion•added 2019/09/23 4:15 a.m.•10 views

Cross site scripting

admin/infolistadd.php in PHPMyWind 5.6 has stored XSS...

4.3CVSS6.2AI score0.00328EPSS

Exploits1References1Affected Software1

Prion•added 2019/09/23 4:15 a.m.•14 views

Cross site scripting

admin/infoclassupdate.php in PHPMyWind 5.6 has stored XSS...

3.5CVSS5.1AI score0.00323EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/09/23 3:44 a.m.•16 views

CVE-2019-16704

admin/infoclassupdate.php in PHPMyWind 5.6 has stored XSS...

5.2AI score0.00323EPSS

Exploits1References1

Cvelist•added 2019/09/23 3:44 a.m.•9 views

CVE-2019-16703

admin/infolistadd.php in PHPMyWind 5.6 has stored XSS...

6.3AI score0.00328EPSS

Exploits1References1

CVE•added 2019/09/23 3:44 a.m.•150 views

CVE-2019-16703

CVE-2019-16703 affects PHPMyWind 5.6, where the vulnerability is a stored cross-site scripting flaw in the admin/infolist_add.php file. The root cause is insufficient validation of client-side data, allowing an attacker to inject and execute arbitrary script when the page is accessed or when data...

6.1CVSS6.2AI score0.00328EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by