3 matches found
BSA Radar 1.6.7234.24750 Cross Site Scripting
Exploit title: BSA Radar 1.6.7234.24750 - Persistent Cross-Site Scripting Exploit Author: William Summerhill Date: 2020-06-22 Vendor homepage: https://www.globalradar.com/ Tested on: Window CVE-2020-14943 Description: The "Firstname" and "Lastname" parameters in Global RADAR BSA Radar 1.6.7234.X...
BSA Radar 1.6.7234.24750 - Persistent Cross-Site Scripting
Exploit title: BSA Radar 1.6.7234.24750 - Persistent Cross-Site Scripting Exploit Author: William Summerhill Date: 2020-06-22 Vendor homepage: https://www.globalradar.com/ Tested on: Window CVE-2020-14943 Description: The "Firstname" and "Lastname" parameters in Global RADAR BSA Radar 1.6.7234.X...
CVE-2020-14943
CVE-2020-14943 affects Global RADAR BSA Radar versions 1.6.7234.24750 and earlier. The vulnerability is a stored cross-site scripting (XSS) in the Update User Profile feature, exploitable via the Firstname and Lastname parameters. Public PoCs and exploits show injection of script payloads (e.g., ...