258 matches found
CVE-2020-18229
Cross Site Scripting XSS in PHPMyWind v5.5 allows remote attackers to execute arbitrary code by injecting scripts into the parameter "$cfgcopyright" of component " /admin/webconfig.php"...
Cross site scripting
Cross Site Scripting XSS in PHPMyWind v5.5 allows remote attackers to execute arbitrary code by injecting scripts into the parameter "$cfgswitchshow" of component " /admin/webconfig.php"...
Cross site scripting
Cross Site Scripting XSS in PHPMyWind v5.5 allows remote attackers to execute arbitrary code by injecting scripts into the parameter "$cfgcopyright" of component " /admin/webconfig.php"...
CVE-2020-18229
CVE-2020-18229 affects PHPMyWind v5.5 with a Cross Site Scripting (XSS) vulnerability in the /admin/web_config.php component, where injecting scripts into the parameter $cfg_copyright allows remote attackers to execute arbitrary code. The connected documents consistently describe the flaw as an X...
CVE-2020-18229
Cross Site Scripting XSS in PHPMyWind v5.5 allows remote attackers to execute arbitrary code by injecting scripts into the parameter "$cfgcopyright" of component " /admin/webconfig.php"...
CVE-2020-18230
CVE-2020-18230 describes a Cross-Site Scripting (XSS) vulnerability in PHPMyWind v5.5. The issue is triggered by injecting scripts into the parameter "$cfg_switchshow" of the component "/admin/web_config.php", enabling remote attackers to execute arbitrary code. Documents consistently identify PH...
PHPMyWind 跨站脚本漏洞
PHPMyWind is a set of PHP and MySQL-based and W3C-compliant enterprise website building solutions. A cross-site scripting vulnerability exists in PHPMyWind v5.5 that allows a remote attacker to execute arbitrary code by injecting script into the component "/admin/webconfig.php" with the parameter...
PHPMyWind 跨站脚本漏洞
PHPMyWind is a set of PHP and MySQL-based and W3C-compliant enterprise website building solutions. A cross-site scripting vulnerability exists in PHPMyWind v5.5, which allows remote attackers to execute arbitrary code by injecting script into the parameter "$cfgcopyright" in the component...
Directory Traversal Vulnerability in PHPMyWind
PHPMyWind is a PHP + MySQL based development of W3C standards-compliant site building engine . PHPMyWind has a directory traversal vulnerability that can be exploited by attackers to obtain sensitive information...
Command execution vulnerability in the PHPMyWind si***_sa***.php file
PHPMyWind is a PHP + MySQL based development of W3C standards-compliant site building engine . A command execution vulnerability exists in the PHPMyWind sisa.php file. An attacker can exploit the vulnerability to execute commands and gain server privileges...
SQL Injection Vulnerability in PHPMyWind Website Building System (CNVD-2019-43878)
PHPMyWind is a PHP + MySQL based development of W3C standards-compliant site building engine . There is a SQL injection vulnerability in the PHPMyWind website builder system, which can be exploited by an attacker to obtain sensitive information from the database...
SQL Injection Vulnerability in PHPMyWind Website Building System (CNVD-2019-43877)
PHPMyWind is a PHP + MySQL based development of W3C standards-compliant site building engine . There is a SQL injection vulnerability in the PHPMyWind website builder system, which can be exploited by an attacker to obtain sensitive information from the database...
SQL Injection Vulnerability in PHPMyWind Website Building System (CNVD-2019-43876)
PHPMyWind is a PHP + MySQL based development of W3C standards-compliant site building engine . A SQL injection vulnerability exists in the PHPMyWind website builder system. An attacker can exploit this vulnerability to obtain sensitive information from the database...
CVE-2019-16704
admin/infoclassupdate.php in PHPMyWind 5.6 has stored XSS...
CVE-2019-16703
admin/infolistadd.php in PHPMyWind 5.6 has stored XSS...
CVE-2019-16704
admin/infoclassupdate.php in PHPMyWind 5.6 has stored XSS...
CVE-2019-16703
admin/infolistadd.php in PHPMyWind 5.6 has stored XSS...
Cross site scripting
admin/infolistadd.php in PHPMyWind 5.6 has stored XSS...
Cross site scripting
admin/infoclassupdate.php in PHPMyWind 5.6 has stored XSS...
CVE-2019-16704
PHPMyWind 5.6 is affected by a stored XSS vulnerability in admin/infoclass_update.php. The root cause is lack of proper validation of client-side data in the web application, allowing an attacker to execute client-side code. This is documented across multiple connected sources (e.g., Red Hat RH-C...