18 matches found
CVE-2019-7547
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
CVE-2019-7546
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
EUVD-2019-17086
Malware in sbrugna...
EUVD-2019-17087
Malware in sbrugna...
CVE-2019-7547
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
CVE-2019-7547
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
CVE-2019-7546
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
CVE-2019-7546
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
Cross site scripting
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
Cross site scripting
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
CVE-2019-7547
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
CVE-2019-7547
SIDU 6.0 is affected. The vulnerability arises from insufficient filtering of the database name, allowing an attacker to inject a name containing an XSS payload and trigger stored XSS. The Red Hat and NVD entries corroborate the issue; no exploit details or remediation are provided in the supplie...
CVE-2019-7546
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
CVE-2019-7546
SIDU 6.0 is affected by a reflected XSS in the dbs parameter of conn.php. The vulnerability allows injection of scripts via a crafted URL, with impact described in the CVE as partial integrity impact and low confidentiality impact (CVSS details: CVSSv2 base 4.3 MEDIUM; CVSSv3 base 6.1 MEDIUM). No...
SIDU 6.0 Cross Site Scripting
Exploit Title: SIDU 6.0 Database Web GUI | Cross-Site Scripting Date: 17.01.2019 Exploit Author: Ozer Goker Vendor Homepage: http://topnew.net/sidu Software Link: http://downloads.sourceforge.net/sidu/sidu60.zip Version: 6.0 Introduction SIDU is a database front-end tool GUI SIDU is a FREE databa...
SIDU 5.2 Cross Site Scripting
Exploit Title: SIDU 5.2 Database Web GUI Multiple XSS Vulnerabilities Date: 04.04.2016 Exploit Author: Ozer Goker Vendor Homepage: http://topnew.net/sidu/ Software Link: https://sourceforge.net/projects/sidu/files/sidu/sidu52.zip Version: app version 5.2 XSS details: XSS1 URL...
SIDU 5.3 Cross Site Scripting
Exploit Title: SIDU 5.3 Database Web GUI Multiple XSS Vulnerabilities Date: 04.04.2016 Exploit Author: Ozer Goker Vendor Homepage: http://topnew.net/sidu/ Software Link: https://sourceforge.net/projects/sidu/files/sidu/sidu53.zip Version: app version 5.3 XSS details: XSS1 URL...
Sidu 5.2 Admin XSS Vulnerability
Affected Vendor: www.topnew.net/sidu/ Credits: John Page hyp3rlinx Domains: hyp3rlinx.altervista.org Source: http://hyp3rlinx.altervista.org/advisories/AS-SIDU0513.txt Product: Sidu version 5.2 is a web based database front-end administration tool. Advisory Information:...