phpservermon/phpservermon

Packagist5 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting phpservermon/phpservermonpage 1 of 1

CVE-2018-18921MEDIUMCVSS 6.5EG 6.5✓ Fixed in 3.3.2
2018-12-18
vulnerable: v3.1.0 ... v3.3.1 (8 versions)
PHP Server Monitor before 3.3.2 has CSRF, as demonstrated by a Delete action.
CVE-2021-4097MEDIUMCVSS 5.4EG 6.3
2021-12-12
vulnerable: v3.1.0 ... v3.5.2 (18 versions)
phpservermon is vulnerable to Improper Neutralization of CRLF Sequences
CVE-2021-4240LOWCVSS 2.6EG 2.6✓ Fixed in 3.6.0
2022-11-15
vulnerable: v3.1.0 ... v3.5.2 (18 versions)
A vulnerability, which was classified as problematic, was found in phpservermon. This affects the function generatePasswordResetToken of the file src/psm/Service/User.php. The manipulation leads to use of predictable algorithm in random nu…
CVE-2021-4241LOWCVSS 2.6EG 2.6✓ Fixed in 3.6.0
2022-11-15
vulnerable: v3.1.0 ... v3.5.2 (18 versions)
A vulnerability, which was classified as problematic, was found in phpservermon. Affected is the function setUserLoggedIn of the file src/psm/Service/User.php. The manipulation leads to use of predictable algorithm in random number generat…
CVE-2024-5312MEDIUMCVSS 6.3EG 6.3✓ Fixed in 3.3.0
2024-05-24
vulnerable: v3.1.0 ... v3.2.2 (6 versions)
PHP Server Monitor, version 3.2.0, is vulnerable to an XSS via the /phpservermon-3.2.0/vendor/phpmailer/phpmailer/test_script/index.php page in all visible parameters. An attacker could create a specially crafted URL, send it to a victim a…

Check whether phpservermon/phpservermon is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for phpservermon/phpservermon CVEs against the assets you own.

Start Free Scan →