16 matches found
EUVD-2017-3090
Malware in sbrugna...
CVE-2024-9101
A reflected cross-site scripting XSS vulnerability in the 'Entry Chooser' of phpLDAPadmin version 1.2.1 through the latest version, 1.2.6.7 allows attackers to execute arbitrary JavaScript in the user's browser via the 'element' parameter, which is unsafely passed to the JavaScript 'eval' functio...
DEBIAN-CVE-2024-9101
A reflected cross-site scripting XSS vulnerability in the 'Entry Chooser' of phpLDAPadmin version 1.2.1 through the latest version, 1.2.6.7 allows attackers to execute arbitrary JavaScript in the user's browser via the 'element' parameter, which is unsafely passed to the JavaScript 'eval' functio...
UBUNTU-CVE-2024-9101
A reflected cross-site scripting XSS vulnerability in the 'Entry Chooser' of phpLDAPadmin version 1.2.1 through the latest version, 1.2.6.7 allows attackers to execute arbitrary JavaScript in the user's browser via the 'element' parameter, which is unsafely passed to the JavaScript 'eval' functio...
CVE-2024-9101
A reflected cross-site scripting XSS vulnerability in the 'Entry Chooser' of phpLDAPadmin version 1.2.1 through the latest version, 1.2.6.7 allows attackers to execute arbitrary JavaScript in the user's browser via the 'element' parameter, which is unsafely passed to the JavaScript 'eval' functio...
PT-2024-39430 · Unknown +1 · Phpldapadmin +1
Name of the Vulnerable Software and Affected Versions: phpLDAPadmin versions 1.2.1 through 1.2.6.7 Description: A reflected cross-site scripting XSS issue in the 'Entry Chooser' of phpLDAPadmin allows attackers to execute arbitrary JavaScript in the user's browser via the element parameter, which...
phpLDAPadmin 安全漏洞
phpLDAPadmin is a web-based LDAP client from the phpLDAPadmin personal developer, which is primarily used to manage LDAP servers. A security vulnerability exists in phpLDAPadmin versions 1.2.1 through 1.2.6.7, which stems from the presence of a reflective cross-site scripting vulnerability that...
IDERA Uptime Monitor SQL Injection Vulnerability
IDERA Uptime Monitor is a cross-platform server monitoring software from IDERA. The software provides a server performance, availability and other indicators to collect, summarize and generate reports and other functions. An SQL injection vulnerability exists in the...
Sql injection
IDERA Uptime Monitor 7.8 has SQL injection in /gadgets/definitions/uptime.CapacityWhatIfGadget/getmetrics.php via the element parameter...
CVE-2017-11470
IDERA Uptime Monitor 7.8 has SQL injection in /gadgets/definitions/uptime.CapacityWhatifGadget/getxenmetrics.php via the element parameter...
Sql injection
IDERA Uptime Monitor 7.8 has SQL injection in /gadgets/definitions/uptime.CapacityWhatifGadget/getxenmetrics.php via the element parameter...
CVE-2017-11471
IDERA Uptime Monitor 7.8 has SQL injection in /gadgets/definitions/uptime.CapacityWhatIfGadget/getmetrics.php via the element parameter...
CVE-2017-11471
IDERA Uptime Monitor 7.8 has SQL injection in /gadgets/definitions/uptime.CapacityWhatIfGadget/getmetrics.php via the element parameter...
CVE-2017-11471
IDERA Uptime Monitor 7.8 has SQL injection in /gadgets/definitions/uptime.CapacityWhatIfGadget/getmetrics.php via the element parameter...
CVE-2017-11470
IDERA Uptime Monitor 7.8 has SQL injection in /gadgets/definitions/uptime.CapacityWhatifGadget/getxenmetrics.php via the element parameter...
CVE-2017-11471
CVE-2017-11471 affects IDERA Uptime Monitor 7.8. SQL injection vulnerability in /gadgets/definitions/uptime.CapacityWhatIfGadget/getmetrics.php via the element parameter enables arbitrary SQL execution. CVSS metrics indicate high to critical impact (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Exploitat...