8 matches found
CVE-2019-9839
VFront 0.99.5 has Reflected XSS via the admin/menuregistri.php descrizioneg parameter or the admin/syncregtab.php azzera parameter...
CVE-2019-9838
VFront 0.99.5 has stored XSS via the admin/syncregtab.php azzera parameter, which is mishandled during admin/errorlog.php rendering...
Cross site scripting
VFront 0.99.5 has stored XSS via the admin/syncregtab.php azzera parameter, which is mishandled during admin/errorlog.php rendering...
Cross site scripting
VFront 0.99.5 has Reflected XSS via the admin/menuregistri.php descrizioneg parameter or the admin/syncregtab.php azzera parameter...
CVE-2019-9838
Summary: CVE-2019-9838 affects VFront 0.99.5 with a stored XSS vulnerability. The issue occurs in the parameter azzera of admin/sync_reg_tab.php and is mishandled during rendering in admin/error_log.php. Affected software: VFront 0.99.5 (PHP/JavaScript front-end tooling for MySQL/PostgreSQL). Roo...
CVE-2019-9838
VFront 0.99.5 has stored XSS via the admin/syncregtab.php azzera parameter, which is mishandled during admin/errorlog.php rendering...
CVE-2019-9839
VFront 0.99.5 is affected by a Reflected Cross‑Site Scripting (XSS) vulnerability. The issue is triggered via the admin/menu_registri.php descrizione_g parameter or the admin/sync_reg_tab.php azzera parameter. Public references describe it as a reflected XSS with proof patterns such as [removed]a...
CVE-2019-9839
VFront 0.99.5 has Reflected XSS via the admin/menuregistri.php descrizioneg parameter or the admin/syncregtab.php azzera parameter...