Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
PhpsugarPhp Melody

4 matches found

CVE
CVEadded 2017/10/18 2:29 a.m.48 views

CVE-2017-15578

In PHPSUGAR PHP Melody before 2.7.3, SQL Injection exists via the image parameter to admin/edit_category.php.

8.8CVSS9.7AI score0.002EPSS
CVE
CVEadded 2017/10/18 2:29 a.m.48 views

CVE-2017-15579

In PHPSUGAR PHP Melody before 2.7.3, SQL Injection exists via an aa_pages_per_page cookie in a playlist action to watch.php.

9.8CVSS9.8AI score0.00376EPSS
CVE
CVEadded 2017/10/24 6:29 a.m.39 views

CVE-2017-15081

In PHPSUGAR PHP Melody CMS 2.6.1, SQL Injection exists via the playlist parameter to playlists.php.

9.8CVSS9.8AI score0.07326EPSS
CVE
CVEadded 2017/10/19 10:29 p.m.34 views

CVE-2017-15648

In PHPSUGAR PHP Melody before 2.7.3, page_manager.php has XSS via the page_title parameter.

6.1CVSS6AI score0.00301EPSS