18 matches found
CVE-2019-7547
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
CVE-2019-7546
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
EUVD-2019-17087
Malware in sbrugna...
EUVD-2019-17086
Malware in sbrugna...
CVE-2019-7547
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
CVE-2019-7547
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
Cross site scripting
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
CVE-2019-7546
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
CVE-2019-7546
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
Cross site scripting
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
CVE-2019-7547
An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS...
CVE-2019-7547
SIDU 6.0 is affected. The vulnerability arises from insufficient filtering of the database name, allowing an attacker to inject a name containing an XSS payload and trigger stored XSS. The Red Hat and NVD entries corroborate the issue; no exploit details or remediation are provided in the supplie...
CVE-2019-7546
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...
CVE-2019-7546
SIDU 6.0 is affected by a reflected XSS in the dbs parameter of conn.php. The vulnerability allows injection of scripts via a crafted URL, with impact described in the CVE as partial integrity impact and low confidentiality impact (CVSS details: CVSSv2 base 4.3 MEDIUM; CVSSv3 base 6.1 MEDIUM). No...
SIDU 6.0 Cross Site Scripting
Exploit Title: SIDU 6.0 Database Web GUI | Cross-Site Scripting Date: 17.01.2019 Exploit Author: Ozer Goker Vendor Homepage: http://topnew.net/sidu Software Link: http://downloads.sourceforge.net/sidu/sidu60.zip Version: 6.0 Introduction SIDU is a database front-end tool GUI SIDU is a FREE databa...
SIDU 5.2 Cross Site Scripting
Exploit Title: SIDU 5.2 Database Web GUI Multiple XSS Vulnerabilities Date: 04.04.2016 Exploit Author: Ozer Goker Vendor Homepage: http://topnew.net/sidu/ Software Link: https://sourceforge.net/projects/sidu/files/sidu/sidu52.zip Version: app version 5.2 XSS details: XSS1 URL...
SIDU 5.3 Cross Site Scripting
Exploit Title: SIDU 5.3 Database Web GUI Multiple XSS Vulnerabilities Date: 04.04.2016 Exploit Author: Ozer Goker Vendor Homepage: http://topnew.net/sidu/ Software Link: https://sourceforge.net/projects/sidu/files/sidu/sidu53.zip Version: app version 5.3 XSS details: XSS1 URL...
Sidu 5.2 Admin XSS Vulnerability
Affected Vendor: www.topnew.net/sidu/ Credits: John Page hyp3rlinx Domains: hyp3rlinx.altervista.org Source: http://hyp3rlinx.altervista.org/advisories/AS-SIDU0513.txt Product: Sidu version 5.2 is a web based database front-end administration tool. Advisory Information:...