4 matches found
EUVD-2022-40714
Malicious code in bioql PyPI...
CVE-2022-38110
In Database Performance Analyzer DPA 2022.4 and older releases, certain URL vectors are susceptible to authenticated reflected cross-site scripting...
CVE-2022-38112 Sensitive Information Disclosure Vulnerability
In DPA 2022.4 and older releases, generated heap memory dumps contain sensitive information in cleartext...
CVE-2022-38110
SolarWinds Database Performance Analyzer (DPA) versions 2022.4 and older are vulnerable to authenticated reflected cross‑site scripting via certain URL vectors. The root cause is exposure of URL handling that can reflect input back to authenticated users, enabling XSS within affected sessions. Af...