Myt Project Myt vulnerabilities
2 known vulnerabilities affecting myt_project/myt.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2019-13346P3MEDIUMCVSS 6.1PoCv1.5.12019-07-17
CVE-2019-13346 [MEDIUM] CWE-79 CVE-2019-13346: In MyT 1.5.1, the User[username] parameter has XSS.
In MyT 1.5.1, the User[username] parameter has XSS.
nvd
CVE-2019-25713P3HIGHCVSS 8.1v1.5.12026-04-12
CVE-2019-25713 [HIGH] CWE-89 CVE-2019-25713: MyT-PM 1.5.1 contains an SQL injection vulnerability that allows authenticated attackers to execute
MyT-PM 1.5.1 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the Charge[group_total] parameter. Attackers can submit crafted POST requests to the /charge/admin endpoint with error-based, time-based blind, or stacked query payloads to extract sensitive databa
nvd