8 matches found
CVE-2020-36489
Dropouts Technologies LLP Air Share v1.2 was discovered to contain a cross-site scripting XSS vulnerability in the devicename parameter. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the devicename information...
CVE-2020-23041
Dropouts Technologies LLP Air Share v1.2 was discovered to contain a cross-site scripting XSS vulnerability in the path parameter of the list and download exception-handling. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted GET request...
CVE-2020-23042
Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain a cross-site scripting XSS vulnerability in the path parameter of the list and download module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted GET request...
Cross site scripting
Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain a cross-site scripting XSS vulnerability in the path parameter of the list and download module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted GET request...
Directory traversal
Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain an issue in the path parameter of the list and download module which allows attackers to perform a directory traversal via a change to the path variable to request the local list command...
CVE-2020-23042
CVE-2020-23042 affects Dropouts Technologies LLP Super Backup v2.0.5. The vulnerability is a cross-site scripting (XSS) flaw in the path parameter of the list and download modules, enabling attackers to execute arbitrary web scripts or HTML via a crafted GET request. The issue is due to unsafely ...
CVE-2020-23061
The CVE concerns Dropouts Technologies LLP Super Backup v2.0.5, where an improper validation of the path parameter in the list and download modules enables directory traversal by modifying the path to request a local list command. The issue is triggered by a path variable that can be navigated to...
SuperBackup 2.0.5 Persistent Cross Site Scripting
Document Title: =============== SuperBackup v2.0.5 iOS - VCF Persistent XSS Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2202 Release Date: ============= 2020-04-15 Vulnerability Laboratory ID VL-ID: ====================================...