Vulnerabilities > Phamm

DATE	CVE	VULNERABILITY TITLE	RISK
2019-03-17	CVE-2018-20806	Cross-site Scripting vulnerability in Phamm 0.6.8 Phamm (aka PHP LDAP Virtual Hosting Manager) 0.6.8 allows XSS via the login page (the /public/main.php action parameter). network phamm CWE-79	4.3
2017-07-20	CVE-2017-0378	Cross-site Scripting vulnerability in Phamm XSS exists in the login_form function in views/helpers.php in Phamm before 0.6.7, exploitable via the PATH_INFO to main.php. network phamm CWE-79	4.3

Vulnerabilities > Phamm {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Phamm"}]}