Phpgacl Project Phpgacl — known CVE vulnerabilities
Every CVE whose affected-product data names Phpgacl Project Phpgacl, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2020-13567 — CVSS 9.8 (critical): Multiple SQL injection vulnerabilities exist in phpGACL 3.3.7. A specially crafted HTTP request can lead to a SQL injection. An attacker…
CVE-2020-13566 — CVSS 8.8 (high): SQL injection vulnerabilities exist in phpGACL 3.3.7. A specially crafted HTTP request can lead to a SQL injection. An attacker can send an…
CVE-2020-13568 — CVSS 8.8 (high): SQL injection vulnerability exists in phpGACL 3.3.7. A specially crafted HTTP request can lead to a SQL injection. An attacker can send an…
CVE-2020-13562 — CVSS 6.1 (medium): A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to…
CVE-2020-13565 — CVSS 6.1 (medium): An open redirect vulnerability exists in the return_page redirection functionality of phpGACL 3.3.7, OpenEMR 5.0.2 and OpenEMR development…
CVE-2020-13563 — CVSS 6.1 (medium): A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to…
CVE-2020-13564 — CVSS 6.1 (medium): A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to…