CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2022/12/26 9:30 a.m.•21 views

GHSA-F8P3-Q834-Q9CJ php-mod/curl allows Cross-site Scripting

php-mod/curl a wrapper of the PHP cURL extension before 2.3.2 allows XSS via the postfilepathupload.php key parameter and the POST data to postmultidimensional.php...

6.1CVSS5.9AI score0.01803EPSS

Exploits2References4

NVD•added 2022/12/26 7:15 a.m.•18 views

CVE-2021-30134

php-mod/curl a wrapper of the PHP cURL extension before 2.3.2 allows XSS via the postfilepathupload.php key parameter and the POST data to postmultidimensional.php...

6.1CVSS0.01803EPSS

Exploits2References1

Prion•added 2022/12/26 7:15 a.m.•18 views

Design/Logic Flaw

php-mod/curl a wrapper of the PHP cURL extension before 2.3.2 allows XSS via the postfilepathupload.php key parameter and the POST data to postmultidimensional.php...

5.8CVSS5.9AI score0.01803EPSS

Exploits2References1Affected Software6

Cvelist•added 2022/12/26 12:0 a.m.•17 views

CVE-2021-30134

php-mod/curl a wrapper of the PHP cURL extension before 2.3.2 allows XSS via the postfilepathupload.php key parameter and the POST data to postmultidimensional.php...

6.2AI score0.01803EPSS

Exploits2References1

CVE•added 2022/12/26 12:0 a.m.•119 views

CVE-2021-30134

CVE-2021-30134 affects the php-mod/curl library (wrapper around PHP cURL) before version 2.3.2. The vulnerability enables cross-site scripting via the POST data to post_multidimensional.php and the key parameter post_file_path_upload.php, allowing injection of arbitrary scripts. Connected templat...

6.1CVSS5.9AI score0.01803EPSS

Exploits2References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by