20 matches found
EUVD-2018-8872
Malware in sbrugna...
EUVD-2018-8871
Malware in sbrugna...
EUVD-2018-8870
Malware in sbrugna...
DonLinkage Cross-Site Scripting Vulnerability
DonLinkage is a locator program. A cross-site scripting vulnerability exists in the /pages/bazy/bazyadresow.php and /pages/proxy/add.php modules in DonLinkage version 6.6.8. A remote attacker can exploit this vulnerability JavaScript code...
DonLinkage SQL Injection Vulnerability
DonLinkage is a locator program. A SQL injection vulnerability exists in the /pages/proxy/php.php and /pages/proxy/add.php files in DonLinkage version 6.6.8. A remote attacker can exploit this vulnerability with specially crafted input to obtain information from the database...
Information disclosure
An issue was discovered in DonLinkage 6.6.8. SQL injection in /pages/proxy/php.php and /pages/proxy/add.php can be exploited via specially crafted input, allowing an attacker to obtain information from a database. The vulnerability can only be triggered by an authorized user...
Information disclosure
An issue was discovered in DonLinkage 6.6.8. It allows remote attackers to obtain potentially sensitive information via a direct request for files/temporary.txt...
CVE-2018-17092
An issue was discovered in DonLinkage 6.6.8. SQL injection in /pages/proxy/php.php and /pages/proxy/add.php can be exploited via specially crafted input, allowing an attacker to obtain information from a database. The vulnerability can only be triggered by an authorized user...
CVE-2018-17091
An issue was discovered in DonLinkage 6.6.8. It allows remote attackers to obtain potentially sensitive information via a direct request for files/temporary.txt...
CVE-2018-17092
An issue was discovered in DonLinkage 6.6.8. SQL injection in /pages/proxy/php.php and /pages/proxy/add.php can be exploited via specially crafted input, allowing an attacker to obtain information from a database. The vulnerability can only be triggered by an authorized user...
CVE-2018-17090
An issue was discovered in DonLinkage 6.6.8. The modules /pages/bazy/bazyadresow.php and /pages/proxy/add.php are vulnerable to stored XSS that can be triggered by closing followed by tags...
CVE-2018-17090
An issue was discovered in DonLinkage 6.6.8. The modules /pages/bazy/bazyadresow.php and /pages/proxy/add.php are vulnerable to stored XSS that can be triggered by closing followed by tags...
CVE-2018-17091
An issue was discovered in DonLinkage 6.6.8. It allows remote attackers to obtain potentially sensitive information via a direct request for files/temporary.txt...
Cross site scripting
An issue was discovered in DonLinkage 6.6.8. The modules /pages/bazy/bazyadresow.php and /pages/proxy/add.php are vulnerable to stored XSS that can be triggered by closing followed by tags...
CVE-2018-17091
An issue was discovered in DonLinkage 6.6.8. It allows remote attackers to obtain potentially sensitive information via a direct request for files/temporary.txt...
CVE-2018-17090
An issue was discovered in DonLinkage 6.6.8. The modules /pages/bazy/bazyadresow.php and /pages/proxy/add.php are vulnerable to stored XSS that can be triggered by closing followed by tags...
CVE-2018-17090
DonLinkage 6.6.8 contains a stored XSS vulnerability in the modules /pages/bazy/bazy_adresow.php and /pages/proxy/add.php. The issue is triggered by closing a followed by tags, allowing injected script execution. The CVE entries and CNVD/CVE references confirm this XSS in DonLinkage 6.6.8; no p...
CVE-2018-17091
CVE-2018-17091 affects DonLinkage 6.6.8, where a direct request to files/temporary.txt can disclose potentially sensitive information. The connected documents confirm this information-disclosure vector and the affected software version, but do not provide concrete remediation steps or patch detai...
CVE-2018-17092
Summary: DonLinkage 6.6.8 is affected by a SQL injection in the /pages/proxy/php.php and /pages/proxy/add.php endpoints. The vulnerability allows an attacker to obtain information from the database when input is specially crafted. The attack can only be triggered by an authorized user, per the di...
CVE-2018-17092
An issue was discovered in DonLinkage 6.6.8. SQL injection in /pages/proxy/php.php and /pages/proxy/add.php can be exploited via specially crafted input, allowing an attacker to obtain information from a database. The vulnerability can only be triggered by an authorized user...