Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-6027

Опубликовано: 30 нояб. 2023
Источник: debian
EPSS Низкий

Описание

A critical flaw has been identified in elijaa/phpmemcachedadmin affecting version 1.3.0, specifically related to a stored XSS vulnerability. This vulnerability allows malicious actors to insert a carefully crafted JavaScript payload. The issue arises from improper encoding of user-controlled entries in the "/pmcadmin/configure.php" parameter.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
phpmemcachedadminitppackage

EPSS

Процентиль: 39%
0.00178
Низкий

Связанные уязвимости

nvd логотип

CVE-2023-6027

CVSS3: 6.1
nvd
около 2 лет назад

A critical flaw has been identified in elijaa/phpmemcachedadmin affecting version 1.3.0, specifically related to a stored XSS vulnerability. This vulnerability allows malicious actors to insert a carefully crafted JavaScript payload. The issue arises from improper encoding of user-controlled entries in the "/pmcadmin/configure.php" parameter.

github логотип

GHSA-pr4w-m4rp-gp87

CVSS3: 6.1
github
около 2 лет назад

PHPMemcachedAdmin vulnerable to cross-site scripting (XSS) via improper encoding

EPSS

Процентиль: 39%
0.00178
Низкий