phpRedisAdmin before 1.13.2 allows XSS via the login.php username parameter.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NPhpredisadmin Project Phpredisadmin
APPPhpredisadmin Project< 1.13.12
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
XSS
CWE
Powiązane podatności
CVE-2021-4268MEDIUM4.3ten sam produkt
A vulnerability, which was classified as problematic, was found in phpRedisAdmin up to 1.17.3. This affects an...
CVE-2021-4259MEDIUM5.0ten sam produkt
A vulnerability was found in phpRedisAdmin up to 1.16.1. It has been classified as problematic. This affects t...