SolarWinds Database Performance Analyzer 11.1.457 - Cross-Site Scripting

SolarWinds Database Performance Analyzer 11.1.457 contains a reflected cross-site scripting vulnerability in its idcStateError component, where the page parameter is reflected into the HREF of the 'Try Again' Button on the page, aka a /iwc/idcStateError.iwc?page= URI. id: CVE-2018-19386 info: nam...

CVE-2018-19386

SolarWinds Database Performance Analyzer 11.1.457 contains an instance of Reflected XSS in its idcStateError component, where the page parameter is reflected into the HREF of the 'Try Again' Button on the page, aka a /iwc/idcStateError.iwc?page= URI...

SolarWinds Database Performance Analyzer (DPA) Installed (Linux)

Binary data solarwindsdpanixinstalled.nbin...

EUVD-2021-21872

Malware in sbrugna...

EUVD-2018-8095

Malware in sbrugna...

EUVD-2022-40712

Malicious code in bioql PyPI...

EUVD-2022-7232

Malicious code in bioql PyPI...

SolarWinds Database Performance Analyzer (DPA) Installed (Windows)

Binary data solarwindsdpawininstalled.nbin...

CVE-2025-26398

SolarWinds Database Performance Analyzer was found to contain a hard-coded cryptographic key. If exploited, this vulnerability could lead to a machine-in-the-middle MITM attack against users. This vulnerability requires additional software not installed by default, local access to the server and...

CVE-2025-26398

CVE-2025-26398 is documented as a vulnerability in SolarWinds Database Performance Analyzer where a hard-coded cryptographic key exists. According to the sources, exploitation could enable a local attacker with administrator privileges (and with access to the host where the additional software is...

CVE-2025-26398 SolarWinds Database Performance Analyzer Hard-coded Cryptographic Key Vulnerability

SolarWinds Database Performance Analyzer was found to contain a hard-coded cryptographic key. If exploited, this vulnerability could lead to a machine-in-the-middle MITM attack against users. This vulnerability requires additional software not installed by default, local access to the server and...

PT-2025-32636 · Solarwinds · Solarwinds Database Performance Analyzer

Name of the Vulnerable Software and Affected Versions: SolarWinds Database Performance Analyzer affected versions not specified Description: SolarWinds Database Performance Analyzer contains a hard-coded cryptographic key. Exploitation of this issue could lead to a machine-in-the-middle MITM atta...

CVE-2018-16243

SolarWinds Database Performance Analyzer DPA 11.1.468 and 12.0.3074 have several persistent XSS vulnerabilities, related to logViewer.iwc, centralManage.cen, userAdministration.iwc, database.iwc, alertManagement.iwc, eventAnnotations.iwc, and central.cen...

CVE-2022-41932

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. It's possible to make XWiki create many new schemas and fill them with tables just by using a crafted user identifier in the login form. This may lead to degraded database performance. The...

CVE-2023-33231 XSS in SolarWinds Database Performance Analyzer 2023.2

XSS attack was possible in DPA 2023.2 due to insufficient input validation...

SolarWinds Database Performance Analyzer 跨站脚本漏洞

SolarWinds Database Performance Analyzer is an application from SolarWinds USA. A security vulnerability exists in SolarWinds Database Performance Analyzer version 2023.2 that stems from insufficient input validation. An attacker can exploit this vulnerability to perform cross-site scripting...

CVE-2023-23838 Directory traversal and file enumeration vulnerability: Database Performance Analyzer (DPA) 2023.1

Directory traversal and file enumeration vulnerability which allowed users to enumerate to different folders of the server...

SolarWinds Database Performance Analyzer 安全漏洞

SolarWinds Database Performance Analyzer is a set of database performance analyzers from SolarWinds Inc. in the United States. The product is used for SQL query performance monitoring, analysis, and tuning, among other things. A security vulnerability exists in SolarWinds Database Performance...

PT-2023-19245 · Solarwinds · Database Performance Analyzer

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: A directory traversal and file enumeration issue allows users to enumerate different folders of the server. Recommendations: At the moment, there is no information about a newer version...

SolarWinds Database Performance Analyzer 路径遍历漏洞

SolarWinds Database Performance Analyzer is a set of database performance analyzers from SolarWinds Inc. in the United States. The product is used for SQL query performance monitoring, analysis and tuning, etc. A security vulnerability exists in SolarWinds Database Performance Analyzer version...