Browse all 3 CVE security advisories affecting PhpMyBackupPro. AI-powered Chinese analysis, POCs, and references for each vulnerability.
PhpMyBackupPro serves as a web-based MySQL database backup solution, allowing administrators to manage and schedule database dumps remotely. Historically, it has been susceptible to multiple remote code execution vulnerabilities due to insufficient input validation in file upload and command execution functions, along with cross-site scripting flaws through improper sanitization of user-supplied data. Privilege escalation vulnerabilities have also been documented, where attackers could gain elevated access through insecure session management or configuration flaws. The tool's three recorded CVEs highlight persistent security concerns, particularly around its handling of user inputs and file operations, making it a target for attackers seeking database compromise or server takeover.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-5415 | Cross-Site Scripting (XSS) vulnerability on PhpMyBackupPro — PhpMyBackupProCWE-79 | 7.1 | High | 2024-05-28 |
| CVE-2024-5414 | Cross-Site Scripting (XSS) vulnerability on PhpMyBackupPro — PhpMyBackupProCWE-79 | 7.1 | High | 2024-05-28 |
| CVE-2024-5413 | Cross-Site Scripting (XSS) vulnerability on PhpMyBackupPro — PhpMyBackupProCWE-79 | 7.1 | High | 2024-05-28 |
This page lists every published CVE security advisory associated with PhpMyBackupPro. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.