12 matches found
CVE-2019-7547
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
CVE-2019-7546
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
EUVD-2019-17086
Malware in sbrugna...
EUVD-2019-17087
Malware in sbrugna...
CVE-2019-7547
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
Cross site scripting
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
CVE-2019-7546
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
Cross site scripting
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
CVE-2019-7547
SIDU 6.0 is affected. The vulnerability arises from insufficient filtering of the database name, allowing an attacker to inject a name containing an XSS payload and trigger stored XSS. The Red Hat and NVD entries corroborate the issue; no exploit details or remediation are provided in the supplie...
CVE-2019-7546
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
CVE-2019-7546
SIDU 6.0 is affected by a reflected XSS in the dbs parameter of conn.php. The vulnerability allows injection of scripts via a crafted URL, with impact described in the CVE as partial integrity impact and low confidentiality impact (CVSS details: CVSSv2 base 4.3 MEDIUM; CVSSv3 base 6.1 MEDIUM). No...
CVE-2019-7547
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...