3 matches found
CVE-2018-18776
CVE-2018-18776 concerns MicroStrategy Web 7, where an XSS vulnerability arises because input is not sufficiently encoded. The issue is exploitable via the admin/admin.asp ShowAll parameter, enabling a cross-site scripting attack. The product is deprecated, and multiple external sources (including...
Microstrategy Web 7 Cross Site Scripting / Traversal
!-- Exploit Title: Cross Site Scripting in Microstrategy Web version 7 Date: 29-10-2018 Exploit Author: Rafael Pedrero Vendor Homepage: https://www.microstrategy.com Software Link: https://www.microstrategy.com Version: Microstrategy Web version 7 Tested on: Unix CVE : CVE-2018-18775 Category:...
Microstrategy Web 7 - Cross-Site Scripting Directory Traversal
Microstrategy Web 7 - Cross-Site Scripting Directory Traversal !-- Exploit Title: Cross Site Scripting in Microstrategy Web version 7 Date: 29-10-2018 Exploit Author: Rafael Pedrero Vendor Homepage: https://www.microstrategy.com Software Link: https://www.microstrategy.com Version: Microstrategy...