7 matches found
EUVD-2019-7857
Malware in sbrugna...
CVE-2019-17504
An issue was discovered in Kirona Dynamic Resource Scheduling DRS 5.5.3.5. A reflected Cross-site scripting XSS vulnerability allows remote attackers to inject arbitrary web script via the /osm/report/ password parameter...
CVE-2019-17503
An issue was discovered in Kirona Dynamic Resource Scheduling DRS 5.5.3.5. An unauthenticated user can access /osm/REGISTER.cmd aka /osmtiles/REGISTER.cmd directly: it contains sensitive information about the database through the SQL queries within this batch file. This file exposes SQL database...
Kirona Solutions Dynamic Resource Scheduling Information Disclosure Vulnerability
Kirona Solutions Dynamic Resource Scheduling DRS is a suite of dynamic resource scheduling software for field services from Kirona Solutions, UK. A security vulnerability exists in Kirona DRS version 5.5.3.5. The vulnerability can be exploited by an attacker to obtain SQL database information suc...
Kirona Solutions Dynamic Resource Scheduling Cross-Site Scripting Vulnerability
Kirona Solutions Dynamic Resource Scheduling DRS is a suite of dynamic resource scheduling software for field services from Kirona Solutions, UK. A cross-site scripting vulnerability exists in Kirona Dynamic Resource Scheduling DRS version 5.5.3.5. The vulnerability stems from a lack of proper...
CVE-2019-17504
An issue was discovered in Kirona Dynamic Resource Scheduling DRS 5.5.3.5. A reflected Cross-site scripting XSS vulnerability allows remote attackers to inject arbitrary web script via the /osm/report/ password parameter...
CVE-2019-17503
CVE-2019-17503 affects Kirona Dynamic Resource Scheduler (DRS) 5.5.3.5. An unauthenticated user can directly access /osm/REGISTER.cmd (/osm_tiles/REGISTER.cmd), which contains SQL queries that disclose database information (version, table names, column names, etc.). Multiple sources (NVD, Red Hat...