Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpwhois project phpwhois vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-43698
phpWhois (last update Jun 30 2021) is affected by a Cross Site Scripting (XSS) vulnerability. In file example.php, the exit function will terminate the script and print the message to the user. The message will contain $_GET['query'] then there is a XSS vulnerability.
Phpwhois Project Phpwhois -
7.5
CVSSv2
CVE-2015-5243
phpWhois allows remote malicious users to execute arbitrary code via a crafted whois record.
Phpwhois Project Phpwhois
4.3
CVSSv2
CVE-2015-3998
Cross-site scripting (XSS) vulnerability in phpwhois 4.2.5, as used in the adsense-click-fraud-monitoring plugin 1.7.5 for WordPress, allows remote malicious users to inject arbitrary web script or HTML via the query parameter to whois.php.
Clickfraud-monitoring Adsense-click-fraud-monitoring 1.7.5
Phpwhois Project Phpwhois 4.2.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started