Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Phpredisadmin ProjectPhpredisadmin

3 matches found

CVE
CVEadded 2022/12/19 12:0 a.m.75 views

CVE-2021-4259

The CVE concerns phpRedisAdmin up to 1.16.1, where the authHttpDigest function in includes/login.inc.php mishandles the response parameter, enabling a wrong operator in string comparison. The issue is addressed by upgrading to 1.16.2 or later; patch identified as 31aa7661e6db6f4dffbf9a635817832a0...

9.8CVSS7.4AI score0.00565EPSS
Web
CVE
CVEadded 2022/12/21 12:0 a.m.58 views

CVE-2021-4268

CVE-2021-4268 affects phpRedisAdmin up to version 1.17.3. The issue is a cross-site request forgery originating from an unknown section, with remote exploit potential. A fix is available in version 1.18.0, and the patch is identified by the hash b9039adbb264c81333328faa9575ecf8e0d2be94. Affected ...

8.8CVSS6.4AI score0.0029EPSS
CVE
CVEadded 2020/10/16 2:6 a.m.49 views

CVE-2020-27163

phpRedisAdmin (web admin for Redis) is affected by CVE-2020-27163: a stored XSS vulnerability in the login.php username parameter. Versions prior to 1.13.2 are impacted. Successful exploitation could lead to user-visible XSS. Remediation: upgrade to version 1.13.2 or later. The issue is confirmed...

6.1CVSS5.9AI score0.0024EPSS