6 matches found
EUVD-2016-1401
Malware in sbrugna...
CVE-2016-10216
An issue was discovered in IT ITems DataBase ITDB through 1.23. The vulnerability exists due to insufficient filtration of user-supplied data in the "value" HTTP POST parameter passed to the "itdb-1.23/js/DataTables-1.8.2/examples/examplessupport/editableajax.php" URL. An attacker could execute...
CVE-2016-10216
An issue was discovered in IT ITems DataBase ITDB through 1.23. The vulnerability exists due to insufficient filtration of user-supplied data in the "value" HTTP POST parameter passed to the "itdb-1.23/js/DataTables-1.8.2/examples/examplessupport/editableajax.php" URL. An attacker could execute...
Authorization
An issue was discovered in IT ITems DataBase ITDB through 1.23. The vulnerability exists due to insufficient filtration of user-supplied data in the "value" HTTP POST parameter passed to the "itdb-1.23/js/DataTables-1.8.2/examples/examplessupport/editableajax.php" URL. An attacker could execute...
CVE-2016-10216
ITDB 1.23 and earlier permits XSS via insufficient filtering of the value POST parameter sent to itdb-1.23/js/DataTables-1.8.2/examples/examples_support/editable_ajax.php. An attacker could inject and execute arbitrary HTML/JavaScript in a user’s browser within the vulnerable website context. The...
Sivann ITDB 'examples_support/editable_ajax.php' cross-site scripting vulnerability
Sivann ITDB is a web-based asset inventory management tool for storing information about assets in an office environment. A cross-site scripting vulnerability exists in Sivann ITDB 'examplessupport/editableajax.php'. Because user input is not validated, an attacker could exploit the vulnerability...