Chatelao Php Address Book — known CVE vulnerabilities
Every CVE whose affected-product data names Chatelao Php Address Book, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2013-2778 — CVSS 7.5 (high): Cross-site request forgery (CSRF) vulnerability in addressbook/register/delete_user.php in PHP Address Book 8.2.5 allows remote attackers…
CVE-2012-1911 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in PHP Address Book 6.2.12 and earlier allow remote attackers to execute arbitrary SQL commands via…
CVE-2013-0135 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in PHP Address Book 8.2.5 allow remote attackers to execute arbitrary SQL commands via the id…
CVE-2013-1748 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in PHP Address Book 8.2.5 allow remote attackers to execute arbitrary SQL commands via unspecified…
CVE-2009-2608 — CVSS 6.8 (medium): Multiple SQL injection vulnerabilities in PHP Address Book 4.0.x allow remote attackers to execute arbitrary SQL commands via the (1) id…
CVE-2013-1749 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in edit.php in PHP Address Book 8.2.5 allows user-assisted remote attackers to inject arbitrary…
CVE-2012-1912 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in preferences.php in PHP Address Book 7.0 and earlier allows remote attackers to inject arbitrary…
CVE-2012-2903 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in PHP Address Book 7.0 and earlier allow remote attackers to inject arbitrary web…