CVE-2019-7402

Publication date

2019-02-05 16:00:00

Family

mitre

State

PUBLISHED

Description

An issue was discovered in PHPMyWind 5.5. The GetQQ function in include/func.class.php allows XSS via the cfg_qqcode parameter. This can be exploited via CSRF.