8 matches found
EUVD-2019-17686
Malware in sbrugna...
CVE-2019-8288
Vulnerability in Online Store v1.0, Stored XSS in userview.php where adidasmemberuser variable is not sanitized...
CVE-2019-8289
Vulnerability in Online Store v1.0, stored XSS in admin/userview.php adidasmemberemail variable...
Design/Logic Flaw
Vulnerability in Online Store v1.0, stored XSS in admin/userview.php adidasmemberemail variable...
CVE-2019-8289
CVE-2019-8289 affects Online Store v1.0 with a stored XSS in admin/user_view.php via the adidas_member_email parameter. Root cause: lack of proper input handling in that parameter leading to script injection when the page is rendered. Impact per sources: low confidentiality/integrity impact, no a...
CVE-2019-8288
Vulnerability in Online Store v1.0, Stored XSS in userview.php where adidasmemberuser variable is not sanitized...
CVE-2019-8288
The CVE-2019-8288 entry refers to a Stored Cross-Site Scripting vulnerability in Online Store v1.0, exploitable via the unsanitized adidas_member_user variable in user_view.php. Affected: Online Store v1.0 (component: user_view.php, variable: adidas_member_user). Root cause: lack of input sanitiz...
CVE-2006-3327
The CVE-2006-3327 entry describes a Cross-site scripting (XSS) vulnerability in the Custom dating biz dating script 1.0. The affected components are profile/mini.php (sn20_special_cases parameter, “Special Cases”), profile/photo_create.php (tyxx01_album_name parameter, “Album Name”), and admin/us...