Phpqladmin » Phpqladmin : Security Vulnerabilities, CVEs,
Multiple PHP remote file inclusion vulnerabilities in phpQLAdmin 2.2.7 allow remote attackers to execute arbitrary PHP code via a URL in the _SESSION[path] parameter to (1) ezmlm.php and (2) tools/update_translations.php.
Max CVSS
6.8
EPSS Score
0.40%
Published
2008-02-28
Updated
2017-09-29
Multiple cross-site scripting (XSS) vulnerabilities in phpQLAdmin 2.2.7 and earlier allow remote attackers to inject arbitrary web script or HTML via the domain parameter in (1) user_add.php or (2) unit_add.php.
Max CVSS
2.6
EPSS Score
0.68%
Published
2006-06-29
Updated
2017-07-20
2 vulnerabilities found