2 matches found
CVE-2019-14266
OpenSNS v6.1.0 allows SQL Injection via the index.php?s=/ucenter/Config/ uid parameter because of the getNeedQueryData function in Application/Common/Model/UserModel.class.php...
Dashy Access Control Error Vulnerability
Dashy is a self-hostable personal dashboard by Alicia Sykes Individual Developer. An Access Control Error vulnerability exists in Dashy version 2.1.1, which stems from incorrect manipulation of the parameter config resulting in incorrect access control...