Squiz Mysource Matrix vulnerabilities
3 known vulnerabilities affecting squiz/mysource_matrix.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2010-4901P4MEDIUMCVSS 4.3PoCv3.28.32011-10-08
CVE-2010-4901 [MEDIUM] CWE-79 CVE-2010-4901: Multiple cross-site scripting (XSS) vulnerabilities in char_map.php in MySource Matrix 3.28.3 allow
Multiple cross-site scripting (XSS) vulnerabilities in char_map.php in MySource Matrix 3.28.3 allow remote attackers to inject arbitrary web script or HTML via the (1) height or (2) width parameter.
nvd
CVE-2006-5037P4MEDIUMCVSS 6.8v3.8v3.8.2+6 more2006-09-27
CVE-2006-5037 [MEDIUM] CVE-2006-5037: MySource Matrix after 3.8 allows remote attackers to use the application as an HTTP proxy server via
MySource Matrix after 3.8 allows remote attackers to use the application as an HTTP proxy server via a MIME encoded URL in the sq_content_src parameter to access arbitrary sites with the server's IP address and conduct cross-site scripting (XSS) attacks. NOTE: the researcher reports that "The vendor does not consider this a vulnerability.
nvd
CVE-2006-5036P4MEDIUMCVSS 6.8≤ 3.82006-09-27
CVE-2006-5036 [MEDIUM] CVE-2006-5036: MySource Matrix 3.8 and earlier, and MySource 2.x, allow remote attackers to use the application as
MySource Matrix 3.8 and earlier, and MySource 2.x, allow remote attackers to use the application as an HTTP proxy server via the sq_remote_page_url parameter to access arbitrary sites with the server's IP address and conduct cross-site scripting (XSS) attacks. NOTE: the researcher reports that "The vendor does not consider this a vulnerability.
nvd