phpLDAPadmin Project phpLDAPadmin 1.2.0

CPE Details

phpLDAPadmin Project phpLDAPadmin 1.2.0
1.2.0
2019-06-13
15h21 +00:00
2019-06-13
15h21 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:phpldapadmin_project:phpldapadmin:1.2.0:*:*:*:*:*:*:*

Informations

Vendor

phpldapadmin_project

Product

phpldapadmin

Version

1.2.0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2020-35132 2020-12-11 03h36 +00:00 An XSS issue has been discovered in phpLDAPadmin before 1.2.6.2 that allows users to store malicious values that may be executed by other users at a later time via get_request in lib/function.php.
5.4
Moyen
CVE-2017-11107 2017-07-08 10h00 +00:00 phpLDAPadmin through 1.2.3 has XSS in htdocs/entry_chooser.php via the form, element, rdn, or container parameter.
6.1
Moyen
CVE-2012-0834 2012-02-11 01h00 +00:00 Cross-site scripting (XSS) vulnerability in lib/QueryRender.php in phpLDAPadmin 1.2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the base parameter in a query_engine action to cmd.php.
4.3
CVE-2011-4074 2011-11-02 16h00 +00:00 Cross-site scripting (XSS) vulnerability in cmd.php in phpLDAPadmin 1.2.x before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via an _debug command.
4.3
CVE-2011-4075 2011-11-02 16h00 +00:00 The masort function in lib/functions.php in phpLDAPadmin 1.2.x before 1.2.2 allows remote attackers to execute arbitrary PHP code via the orderby parameter (aka sortby variable) in a query_engine action to cmd.php, as exploited in the wild in October 2011.
7.5