Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpwhois project phpwhois vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2021-43698
phpWhois (last update Jun 30 2021) is affected by a Cross Site Scripting (XSS) vulnerability. In file example.php, the exit function will terminate the script and print the message to the user. The message will contain $_GET['query'] then there is a XSS vulnerability.
Phpwhois Project Phpwhois -
668
VMScore
CVE-2015-5243
phpWhois allows remote malicious users to execute arbitrary code via a crafted whois record.
Phpwhois Project Phpwhois
383
VMScore
CVE-2015-3998
Cross-site scripting (XSS) vulnerability in phpwhois 4.2.5, as used in the adsense-click-fraud-monitoring plugin 1.7.5 for WordPress, allows remote malicious users to inject arbitrary web script or HTML via the query parameter to whois.php.
Clickfraud-monitoring Adsense-click-fraud-monitoring 1.7.5
Phpwhois Project Phpwhois 4.2.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started