TESI Gandia Integra Total SQL注入漏洞

TESI Gandia Integra Total is a Web-based online survey and data analysis system from TESI Spain. A SQL injection vulnerability exists in TESI Gandia Integra Total versions 2.1.2217.3 through 4.4.2236.1, which originates from an SQL injection of the parameter idestudio in the file...

CVE-2021-21490

SAP NetWeaver AS for ABAP Web Survey, versions - 700, 702, 710, 711, 730, 731, 750, 750, 752, 75A, 75F, does not sufficiently encode input and output parameters which results in reflected cross site scripting vulnerability, through which a malicious user can access data relating to the current...

CVE-2021-21490

SAP NetWeaver AS for ABAP (Web Survey) is affected by CVE-2021-21490 due to insufficient encoding of input/output parameters in WebSurvey BSP-Pages, causing a reflected Cross-Site Scripting (XSS) vulnerability. Affected versions include Web Survey on SAP NetWeaver AS for ABAP 700, 702, 710, 711, ...

PT-2021-14556 · Sap · Sap Netweaver As Abap

Name of the Vulnerable Software and Affected Versions: SAP NetWeaver AS for ABAP Web Survey versions 700 through 75F Description: The issue arises from insufficient encoding of input and output parameters, leading to a reflected cross-site scripting vulnerability. This allows a malicious user to...

Askiaweb survey application contains multiple vulnerabilities

Overview The Askiaweb survey application contains multiple vulnerabilities. Description The Askiaweb survey application contains multiple vulnerabilities.CWE-89: Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' - CVE-2013-0123 The administration interface for the...