Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
douco douphp 1.5 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-12564
In DouCo DouPHP v1.5 Release 20190516, remote attackers can view the database backup file via a brute-force guessing approach for data/backup/DyyyymmddThhmmss.sql filenames.
Douco Douphp 1.5
3.5
CVSSv2
CVE-2018-20560
An issue exists in DouCo DouPHP 1.5 20181221. admin/show.php?rec=update has XSS via the show_name parameter.
Douco Douphp 1.5
3.5
CVSSv2
CVE-2018-20561
An issue exists in DouCo DouPHP 1.5 20181221. admin/article.php?rec=update has XSS via the title parameter.
Douco Douphp 1.5
3.5
CVSSv2
CVE-2018-20563
An issue exists in DouCo DouPHP 1.5 20181221. admin/mobile.php?rec=system&act=update has XSS via the mobile_name parameter.
Douco Douphp 1.5
3.5
CVSSv2
CVE-2018-20564
An issue exists in DouCo DouPHP 1.5 20181221. admin/product_category.php?rec=update has XSS via the cat_name parameter.
Douco Douphp 1.5
5
CVSSv2
CVE-2018-20566
An issue exists in DouCo DouPHP 1.5 20181221. It allows full path disclosure in "Smarty error: unable to read resource" error messages for a crafted installation page.
Douco Douphp 1.5
3.5
CVSSv2
CVE-2018-20557
An issue exists in DouCo DouPHP 1.5 20181221. admin/page.php?rec=edit has XSS via the page_name parameter.
Douco Douphp 1.5
3.5
CVSSv2
CVE-2018-20558
An issue exists in DouCo DouPHP 1.5 20181221. admin/system.php?rec=update has XSS via the site_name parameter.
Douco Douphp 1.5
3.5
CVSSv2
CVE-2018-20559
An issue exists in DouCo DouPHP 1.5 20181221. admin/product.php?rec=update has XSS via the name parameter.
Douco Douphp 1.5
3.5
CVSSv2
CVE-2018-20562
An issue exists in DouCo DouPHP 1.5 20181221. admin/article_category.php?rec=update has XSS via the cat_name parameter.
Douco Douphp 1.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »