2 matches found
BigCommerec Interspire Email Marketer SQL注入漏洞
BigCommerec Interspire Email Marketer IEM is a suite of email marketing software from BigCommerec, USA. BigCommerec Interspire Email Marketer version 6.0.0 suffers from a SQL injection vulnerability that originates from allowing SQL injection in the survey module, which can be exploited by an...
CVE-2019-15095
DWSurvey through 2019-07-22 has reflected XSS via the design/qu-multi-fillblank!answers.action surveyId parameter...