Every CVE whose affected-product data names Xlinesoft Phprunner, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2009-0963 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in PHPRunner 4.2, and possibly earlier, allow remote attackers to execute arbitrary SQL commands via…
CVE-2009-0964 — CVSS 7.5 (high): UserView_list.php in PHPRunner 4.2, and possibly earlier, stores passwords in cleartext in the database, which allows attackers to gain…
CVE-2006-5956 — CVSS 2.1 (low): XLineSoft PHPRunner 3.1 stores the (1) database server name, (2) database names, (3) usernames, and (4) passwords in plaintext in…