cvedb.io
CVE-2019-1000004
MEDIUM · CVSS 6.1
EPSS exploitation probability: 0%
Published 2019-02-04T21:29:00.767 · Last modified 2026-06-17T02:09:23.877

Summary

yugandhargangu JspMyAdmin2 version 1.0.6 and earlier contains a Cross Site Scripting (XSS) vulnerability in sidebar and table data that can result in Database fields aren't properly sanitized and allow code injection (Cross-Site Scripting). This attack appears to be exploitable via the payload needs to be stored in the database and the victim must see the db value in question.

Affected products

jspmyadmin — jspmyadmin2

Does this affect you?

Add your gear to cvedb and we'll alert you only when jspmyadmin ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.