Phamm - Phamm CVE

Filtered by vendor Phamm Subscribe

Filtered by product Phamm

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-20806	1 Phamm	1 Phamm	2019-03-18	4.3 MEDIUM	6.1 MEDIUM
Phamm (aka PHP LDAP Virtual Hosting Manager) 0.6.8 allows XSS via the login page (the /public/main.php action parameter).
CVE-2017-0378	1 Phamm	1 Phamm	2017-07-26	4.3 MEDIUM	6.1 MEDIUM
XSS exists in the login_form function in views/helpers.php in Phamm before 0.6.7, exploitable via the PATH_INFO to main.php.

Vulnerabilities (CVE)