17 matches found
CVE-2016-15051
Nagios XI versions prior to 5.2.4 are vulnerable to cross-site scripting XSS via the Reports interface through values from the startdate and enddate fields. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a...
CVE-2016-15051
Nagios XI versions prior to 5.2.4 are vulnerable to cross-site scripting XSS via the Reports interface through values from the startdate and enddate fields. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a...
CVE-2016-15051
Nagios XI versions prior to 5.2.4 are vulnerable to cross-site scripting XSS via the Reports interface through values from the startdate and enddate fields. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a...
CVE-2016-15051 Nagios XI < 5.2.4 XSS via Report startdate/enddate Fields
Nagios XI versions prior to 5.2.4 are vulnerable to cross-site scripting XSS via the Reports interface through values from the startdate and enddate fields. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a...
CVE-2016-15051 Nagios XI < 5.2.4 XSS via Report startdate/enddate Fields
Nagios XI versions prior to 5.2.4 are vulnerable to cross-site scripting XSS via the Reports interface through values from the startdate and enddate fields. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a...
EUVD-2022-46259
Malicious code in bioql PyPI...
CVE-2022-43215
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the endDate parameter at getOrderReport.php...
EsafeNet CDG 注入漏洞
EsafeNet CDG is a document security management system from EsafeNet. An injection vulnerability exists in EsafeNet CDG version 5.6.3.154.205, which originates from improper handling of the startDate/endDate parameter in the /CDGServer3/logManagement/ClientSortLog.jsp file, resulting in SQL...
Stracker SQL注入漏洞
Stracker is an application by visegripped individual developers. Stracker suffers from a SQL injection vulnerability that stems from the fact that incorrect manipulation of the parameters symbol/startDate/endDate can lead to sql injection...
Billing System Project getOrderReport.php SQL Injection Vulnerability
Billing System Project is a billing system project by Mayuri K. Individual developer. Billing System Project v1.0 suffers from a SQL injection vulnerability that stems from a lack of validation of the endDate parameter in getOrderReport.php against an externally entered SQL statement. An attacker...
CVE-2022-43215
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the endDate parameter at getOrderReport.php...
CVE-2022-43215
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the endDate parameter at getOrderReport.php...
Sql injection
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the endDate parameter at getOrderReport.php...
Billing System Project SQL注入漏洞
Billing System Project is a billing system project by Mayuri K. Individual developer. Billing System Project v1.0 suffers from a SQL injection vulnerability that stems from a lack of validation of the endDate parameter in getOrderReport.php against an externally entered SQL statement. An attacker...
CVE-2022-43215
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the endDate parameter at getOrderReport.php...
CVE-2022-43215
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the endDate parameter at getOrderReport.php...
wstmall open source mall system endDate parameter SQL injection vulnerability
WSTMall is a multi-commercial O2O open source system developed by Merchant Software based on thinkphp, is a system that can help companies and individuals to quickly build a community service system. wstmall open source mall system endDate parameter SQL injection vulnerability , due to the system...