8 matches found
EUVD-2018-20901
Malware in sbrugna...
EUVD-2018-20620
Malware in sbrugna...
CVE-2018-9307
dsmall v20180320 allows XSS via the pdrsn parameter to public/index.php/home/predeposit/index.html...
CVE-2018-9307
dsmall v20180320 allows XSS via the pdrsn parameter to public/index.php/home/predeposit/index.html...
CVE-2018-9307
The CVE concerns dsmall v20180320, where an XSS flaw exists via the pdr_sn parameter in public/index.php/home/predeposit/index.html. The underlying issue is not detailed beyond the XSS mechanism; no explicit root-cause, affected versions beyond v20180320, or patch/mitigation is provided in the do...
dsmall cross-site scripting vulnerability (CNVD-2018-07545)
dsmall is a multi-user platform-level online shopping mall system. A cross-site scripting vulnerability exists in dsmall version 20180320. A remote attacker can exploit this vulnerability by sending the 'pdrsn' parameter to the public/index.php/home/predeposit/index.html page to inject arbitrary...
CVE-2018-9014
dsmall v20180320 allows physical path leakage via a public/index.php/home/predeposit/index.html?pdrsn= request...
CVE-2018-9015
dsmall v20180320 allows XSS via the public/index.php/home/predeposit/index.html pdrsn parameter aka the CMS search box...