Skip to main content

Phpyun

2 CVEs product

Monthly

CVE-2018-18713 HIGH This Week

The function down_sql_action() in /admin/model/database.class.php in PHPYun 4.6 allows remote attackers to read arbitrary files via directory traversal in an m=database&c=down_sql&name=../ URI. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal PHP Phpyun
NVD
CVSS 3.0
7.5
EPSS
2.3%
CVE-2018-18626 HIGH This Week

An issue was discovered in PHPYun V4.6. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure PHP Phpyun
NVD
CVSS 3.0
7.5
EPSS
0.9%
EPSS 2% CVSS 7.5
HIGH This Week

The function down_sql_action() in /admin/model/database.class.php in PHPYun 4.6 allows remote attackers to read arbitrary files via directory traversal in an m=database&c=down_sql&name=../ URI. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal PHP Phpyun
NVD
EPSS 1% CVSS 7.5
HIGH This Week

An issue was discovered in PHPYun V4.6. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure PHP Phpyun
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy