4 matches found
CVE-2022-26644
Online Banking System Protect v1.0 was discovered to contain multiple cross-site scripting XSS vulnerabilities via parameters on user profile, systeminfo and accounts management...
Design/Logic Flaw
Online Banking System Protect v1.0 was discovered to contain a local file inclusion LFI vulnerability via the pages parameter...
CVE-2022-26644
The CVE-2022-26644 entry concerns Online Banking System Protect v1.0 with multiple cross-site scripting (XSS) flaws exploitable through parameters on user profile, system_info, and accounts management. This is documented across multiple sources (NVD/Red Hat and PT Security). Root cause is XSS in ...
CVE-2022-26646
Online Banking System Protect v1.0 was discovered to contain a local file inclusion LFI vulnerability via the pages parameter...