6 matches found
CVE-2014-4196
Cross-site scripting XSS vulnerability in bsi.dll in Bank Soft Systems BSS RBS BS-Client 3.17.9 allows remote attackers to inject arbitrary web script or HTML via the colorstyle parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in bsi.dll in Bank Soft Systems BSS RBS BS-Client 3.17.9 allows remote attackers to inject arbitrary web script or HTML via the colorstyle parameter...
CVE-2014-10398
The CVE-2014-10398 entry describes multiple XSS vulnerabilities in Bank Soft Systems (BSS) RBS BS-Client’s bsi.dll (Private Client/ Retail Client, versions 2.5, 2.4 and earlier). The issue allows remote attackers to inject arbitrary script/HTML via parameters DICTIONARY, FILTERIDENT, FROMSCHEME, ...
CVE-2014-4196
The CVE-2014-4196 entry describes an XSS vulnerability in Bank Soft Systems (BSS) RBS BS-Client 3.17.9, exploitable via the colorstyle parameter in bsi.dll. The impact is as described by the NVD entry; no exploit code or in-the-wild details are provided in the connected documents. Remediation det...
CVE-2014-4196
Cross-site scripting XSS vulnerability in bsi.dll in Bank Soft Systems BSS RBS BS-Client 3.17.9 allows remote attackers to inject arbitrary web script or HTML via the colorstyle parameter...
Sql injection
Multiple SQL injection vulnerabilities in Bank Soft Systems BSS RBS BS-Client 3.17.9 allow remote attackers to execute arbitrary SQL commands via the 1 CARDS or 2 XACTION parameter...