2 matches found
CVE-2015-6945
Cross-site scripting XSS vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to inject arbitrary web script or HTML via the bd parameter to sys/sys/listaBD2.jsp...
CVE-2015-6944
CVE-2015-6944 describes a CSRF vulnerability in JSP/MySQL Administrador Web 1 that allows remote attackers to hijack user authentication and execute arbitrary SQL commands via the cmd parameter to sys/sys/listaBD2.jsp. The affected software is JSP/MySQL Administrador Web (1.x) running on a JSP/My...