2 matches found
CVE-2019-11642
A log poisoning vulnerability has been discovered in the OneShield Policy Dragon Core framework before 5.1.10. Authenticated remote adversaries can poison log files by entering malicious payloads in either headers or form elements. These payloads are then executed via a client side debugging...
CVE-2019-11642
CVE-2019-11642 describes a log-poisoning vulnerability in the OneShield Policy (Dragon Core) framework prior to 5.1.10. Authenticated remote adversaries can inject malicious payloads into log data via headers or form elements; the payloads are then executed through a client-side debugging console...