Skip to main content

Mysqldumper

6 CVEs product

Monthly

CVE-2017-1000012 MEDIUM This Month

MySQL Dumper version 1.24 is vulnerable to stored XSS when displaying the data in the database to the user. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Mysqldumper
NVD GitHub
CVSS 3.0
6.1
EPSS
0.2%
CVE-2012-4255 MEDIUM POC This Month

MySQLDumper 1.24.4 allows remote attackers to obtain sensitive information via a direct request to learn/cubemail/refresh_dblist.php, which reveals the installation path in an error message. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP Information Disclosure Mysqldumper
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2012-4254 MEDIUM POC This Month

MySQLDumper 1.24.4 allows remote attackers to obtain sensitive information (Notices) via a direct request to (1) learn/cubemail/restore.php or (2) learn/cubemail/dump.php. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP Information Disclosure Mysqldumper
NVD Exploit-DB
CVSS 2.0
4.3
EPSS
7.0%
CVE-2012-4253 MEDIUM POC THREAT This Month

Multiple directory traversal vulnerabilities in MySQLDumper 1.24.4 allow remote attackers to read arbitrary files via a .. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 30.2%.

PHP Path Traversal Mysqldumper
NVD Exploit-DB
CVSS 2.0
4.3
EPSS
30.2%
CVE-2012-4252 MEDIUM POC This Month

Multiple cross-site request forgery (CSRF) vulnerabilities in MySQLDumper 1.24.4 allow remote attackers to hijack the authentication of administrators for requests that (1) remove file access. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

CSRF PHP Mysqldumper
NVD Exploit-DB
CVSS 2.0
5.1
EPSS
0.4%
CVE-2012-4251 MEDIUM POC This Month

Multiple cross-site scripting (XSS) vulnerabilities in MySQLDumper 1.24.4 allow remote attackers to inject arbitrary web script or HTML via the (1) page parameter to index.php, (2) phase parameter to. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP XSS Mysqldumper
NVD Exploit-DB
CVSS 2.0
4.3
EPSS
7.7%
EPSS 0% CVSS 6.1
MEDIUM This Month

MySQL Dumper version 1.24 is vulnerable to stored XSS when displaying the data in the database to the user. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Mysqldumper
NVD GitHub
EPSS 0% CVSS 4.3
MEDIUM POC This Month

MySQLDumper 1.24.4 allows remote attackers to obtain sensitive information via a direct request to learn/cubemail/refresh_dblist.php, which reveals the installation path in an error message. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP Information Disclosure Mysqldumper
NVD
EPSS 7% CVSS 4.3
MEDIUM POC This Month

MySQLDumper 1.24.4 allows remote attackers to obtain sensitive information (Notices) via a direct request to (1) learn/cubemail/restore.php or (2) learn/cubemail/dump.php. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP Information Disclosure Mysqldumper
NVD Exploit-DB
EPSS 30% CVSS 4.3
MEDIUM POC THREAT This Month

Multiple directory traversal vulnerabilities in MySQLDumper 1.24.4 allow remote attackers to read arbitrary files via a .. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 30.2%.

PHP Path Traversal Mysqldumper
NVD Exploit-DB
EPSS 0% CVSS 5.1
MEDIUM POC This Month

Multiple cross-site request forgery (CSRF) vulnerabilities in MySQLDumper 1.24.4 allow remote attackers to hijack the authentication of administrators for requests that (1) remove file access. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

CSRF PHP Mysqldumper
NVD Exploit-DB
EPSS 8% CVSS 4.3
MEDIUM POC This Month

Multiple cross-site scripting (XSS) vulnerabilities in MySQLDumper 1.24.4 allow remote attackers to inject arbitrary web script or HTML via the (1) page parameter to index.php, (2) phase parameter to. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP XSS Mysqldumper
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy