Multiple cross-site scripting (XSS) vulnerabilities in phpLiteAdmin 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, (2) droptable parameter, or (3) table parameter to phpliteadmin.php.
5.8AI Score
0.002EPSS
An issue was discovered in phpLiteAdmin 1.9.5 through 1.9.7.1. Due to loose comparison with '==' instead of '===' in classes/Authorization.php for the user-provided login password, it is possible to login with a simpler password if the password has the form of a power in scientific notation (like '...
9.8CVSS
9.4AI Score
0.004EPSS
phpLiteAdmin through 1.9.8.2 allows XSS via the index.php newRows parameter (aka num or number).
6.1CVSS
5.8AI Score
0.001EPSS