Mywebsql

mywebsql

5 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-7731 1Mywebsql 1Mywebsql Jun 17, 2026 Feb 11, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 MyWebSQL 3.7 has a remote code execution (RCE) vulnerability after an attacker writes shell code into the database, and executes the Backup Database function with a .php filename for the backup's archive file.
CVE-2019-7730 1Mywebsql 1Mywebsql Jun 17, 2026 Feb 11, 2019 N/A· v4 5.7 MEDIUM· v3 4.9 MEDIUM· v2 MyWebSQL 3.7 has a Cross-site request forgery (CSRF) vulnerability for deleting a database via the /?q=wrkfrm&type=databases URI.
CVE-2019-7544 1Mywebsql 1Mywebsql Jun 17, 2026 Feb 6, 2019 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 An issue was discovered in MyWebSQL 3.7. The Add User function of the User Manager pages has a Stored Cross-site Scripting (XSS) vulnerability in the User Name Field.
CVE-2017-1000011 1Mywebsql 1Mywebsql May 13, 2026 Jul 17, 2017 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 MyWebSQL version 3.6 is vulnerable to stored XSS in the database manager component resulting in account takeover or stealing of information
CVE-2014-4735 1Mywebsql 1Mywebsql May 6, 2026 Sep 12, 2014 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in MyWebSQL 3.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the table parameter to index.php.