Elijaa - Phpmemcachedadmin CVE - OpenCVE

Filtered by vendor Elijaa Subscriptions

Filtered by product Phpmemcachedadmin Subscriptions

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-6026	1 Elijaa	1 Phpmemcachedadmin	2024-08-02	9.8 Critical
A Path traversal vulnerability has been reported in elijaa/phpmemcachedadmin affecting version 1.3.0. This vulnerability allows an attacker to delete files stored on the server due to lack of proper verification of user-supplied input.
CVE-2023-6027	1 Elijaa	1 Phpmemcachedadmin	2024-08-02	6.1 Medium
A critical flaw has been identified in elijaa/phpmemcachedadmin affecting version 1.3.0, specifically related to a stored XSS vulnerability. This vulnerability allows malicious actors to insert a carefully crafted JavaScript payload. The issue arises from improper encoding of user-controlled entries in the "/pmcadmin/configure.php" parameter.

Page 1 of 1.