2 matches found
SQL Buddy 1.3.3 Cross Site Scripting
SQL Buddy 1.3.3 GET/POST Multiple Remote Cross-Site Scripting Vulnerabilities function xssdocument.forms"xss".submit; function xss2document.forms"xss2".submit; alert1' / input t...
SQL Buddy 1.3.3 (GET/POST) Multiple Remote Cross-Site Scripting Vulnerabilities
Summary SQL Buddy is an open source web based MySQL administration application. Description SQL Buddy suffers from a XSS vulnerability when parsing user input to the 'DATABASE', 'HOST' and 'USER' parameters via POST method in 'login.php', and the 'db' parameter in 'dboverview.php' via GET method...