GCVE - cpe:2.3:a:accomplishtechnology:phpmydirectory:10.4.5:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:accomplishtechnology:phpmydirectory:10.4.5:*:*:*:*:*:*:*

part: a version: 10.4.5 update: *

Vendor	Accomplishtechnology (`3ecc4802-d4d1-5dcf-aeab-9e334d03e806`)
Product	Phpmydirectory (`bb0117a7-86e3-57cf-b062-042aef2eacb9`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/bjohnson045/phpmydirectory`	purl2cpe	2026-06-01 10:16:05.050065

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2006-4756`	vulnerable	2026-06-03 14:27:43.780472	Details available SQL injection vulnerability in alpha.php in phpMyDirectory 10.4.6 and earlier allows remote attackers to execute arbitrary SQL commands via the letter parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information. Published: 2006-09-13T22:00:00.000Z Updated: 2024-08-07T19:23:41.001Z Open on db.gcve.eu Reference links http://secunia.com/advisories/21875 http://www.vupen.com/english/advisories/2006/3562	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-4755`	vulnerable	2026-06-03 14:27:43.779332	Details available Cross-site scripting (XSS) vulnerability in alpha.php in phpMyDirectory 10.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the letter parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information. Published: 2006-09-13T22:00:00.000Z Updated: 2024-08-07T19:23:41.094Z Open on db.gcve.eu Reference links http://secunia.com/advisories/21875 http://www.vupen.com/english/advisories/2006/3562	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.