CVE-2015-6518
published 2015-08-18CVE-2015-6518: Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO…
PriorityP421medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
3.52%
87.8th percentile
Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, (2) droptable parameter, or (3) table parameter to phpliteadmin.php.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | phpliteadmin | — | — |
| phpliteadmin | phpliteadmin | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vendor_debian4.3LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-fvh3-qgxj-vv2x: Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1
ghsa_unreviewed·2022-05-14
CVE-2015-6518 [MEDIUM] CWE-79 GHSA-fvh3-qgxj-vv2x: Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1
Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, (2) droptable parameter, or (3) table parameter to phpliteadmin.php.
Debian
CVE-2015-6518: phpliteadmin - Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1.1 allow re...
vendor_debian·2015·CVSS 4.3
CVE-2015-6518 [MEDIUM] CVE-2015-6518: phpliteadmin - Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1.1 allow re...
Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, (2) droptable parameter, or (3) table parameter to phpliteadmin.php.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
No detection rules found.
No writeups or analysis indexed.
http://packetstormsecurity.com/files/132580/phpLiteAdmin-1.1-Cross-Site-Request-Forgery-Cross-Site-Scripting.htmlhttp://www.securityfocus.com/archive/1/535936/100/0/threadedhttp://packetstormsecurity.com/files/132580/phpLiteAdmin-1.1-Cross-Site-Request-Forgery-Cross-Site-Scripting.htmlhttp://www.securityfocus.com/archive/1/535936/100/0/threaded
2015-08-18
Published