13 matches found
EUVD-2020-23209
Malware in sbrugna...
EUVD-2022-35622
Malicious code in bioql PyPI...
CVE-2022-32555
Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur...
CVE-2020-35542
Unisys Data Exchange Management Studio through 5.0.34 doesn't sanitize the input to a HTML document field. This could be used for an XSS attack...
CVE-2022-32555
Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur...
Cross site request forgery (csrf)
Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur...
CVE-2022-32555
Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur...
CVE-2022-32555
Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur...
PT-2022-21367 · Unisys · Unisys Data Exchange Management Studio
Name of the Vulnerable Software and Affected Versions: Unisys Data Exchange Management Studio versions prior to 6.0.IC2 Unisys Data Exchange Management Studio versions 7.x prior to 7.0.IC1 Description: The issue is related to the absence of an Anti-CSRF token to authenticate POST requests, which...
Unisys Data Exchange Management Studio 跨站请求伪造漏洞
Unisys Data Exchange Management Studio is an application from the American company Unisys. A data exchange component. A security vulnerability exists in Unisys Data Exchange Management Studio versions prior to 6.0.IC2 and 7.x versions prior to 7.0.IC1, which stems from the absence of Anti-CSRF...
Unisys Data Exchange Management Studio Cross-Site Scripting Vulnerability
Unisys Data Exchange Management Studio is a data exchange component from the American company Unisys. A cross-site scripting vulnerability exists in Unisys Data Exchange Management Studio version 5.0.34 and prior versions, which originates from input that is not cleared from HTML document fields,...
CVE-2020-35542
Unisys Data Exchange Management Studio through 5.0.34 doesn't sanitize the input to a HTML document field. This could be used for an XSS attack...
Input validation
Unisys Data Exchange Management Studio through 5.0.34 doesn't sanitize the input to a HTML document field. This could be used for an XSS attack...