2 matches found
CVE-2018-12273
The /edit URI in the DMS component in Ximdex 4.0 has XSS via the Ciudad or Nombre parameter...
CVE-2018-12273
The CVE-2018-12273 entry affects Ximdex 4.0, specifically the DMS component. The vulnerability is in the /edit URI and allows cross-site scripting via the Ciudad or Nombre parameter. The issue is documented across multiple feeds (NVD, CNVD, OSV, Red Hat, etc.). The CVSS data indicate a network-ba...