EUVD-2020-20811

Malware in sbrugna...

sokrates Sokrates SOWA SowaSQL Cross-Site Scripting Vulnerability

sokrates Sokrates SOWA SowaSQL is an administrative database applied to the library environment by the Polish company sokrates. A cross-site scripting vulnerability exists in Sokrates SOWA SowaSQL version 5.6.1 and earlier versions, which originates from the sowacgi.php typ parameter, OPAC is...

CVE-2020-28350

A Cross Site Scripting XSS vulnerability exists in OPAC in Sokrates SOWA SowaSQL through 5.6.1 via the sowacgi.php typ parameter...

Cross site scripting

A Cross Site Scripting XSS vulnerability exists in OPAC in Sokrates SOWA SowaSQL through 5.6.1 via the sowacgi.php typ parameter...

CVE-2020-28350

A Cross Site Scripting XSS vulnerability exists in OPAC in Sokrates SOWA SowaSQL through 5.6.1 via the sowacgi.php typ parameter...

CVE-2020-28350

The CVE-2020-28350 describes a Cross-Site Scripting (XSS) vulnerability in the OPAC component of Sokrates SOWA SowaSQL, triggered via the sowacgi.php typ parameter and affecting versions up to 5.6.1. The root cause is inadequate sanitization of HTML characters in the typ parameter, enabling injec...

Sokrates SOWA SowaSQL Cross Site Scripting

Title: SOWA.OPAC Reflected Cross Site Scripting Vulnerability Type: Cross Site Scripting XSS Attack Type: Account Hijacking, Credential Theft, Data Leakage Author: Marek Holka Date: 2020-11-08 Vendor: SOKRATES-software Software Link: https://www.demo.sowwwa.pl/sowacgi.php Version: SOWA.OPAC all...