8 matches found
EUVD-2018-11195
Malware in sbrugna...
EUVD-2018-8456
Malware in sbrugna...
CVE-2018-19506
Zurmo 3.2.4 has XSS via an admin's use of the name parameter in the reports section, aka the app/index.php/reports/default/details?id=1 URI...
Design/Logic Flaw
Zurmo 3.2.4 allows HTML Injection via an admin's use of HTML in the report section, a related issue to CVE-2018-19506...
CVE-2018-19596
Zurmo 3.2.4 allows HTML Injection via an admin's use of HTML in the report section, a related issue to CVE-2018-19506...
CVE-2018-19506
Zurmo 3.2.4 has XSS via an admin's use of the name parameter in the reports section, aka the app/index.php/reports/default/details?id=1 URI...
CVE-2018-19506
Zurmo 3.2.4 is identified as affected by an XSS vulnerability in the reports module. The issue arises when an admin uses the name parameter in the reports section (URI: app/index.php/reports/default/details?id=1), enabling script injection. The NVD entry for CVE-2018-19506 documents this XSS, wit...
CVE-2018-16654
Zurmo 3.2.4 Stable allows XSS via app/index.php/accounts/default/details?id=2&kanbanBoard=1&openToTaskId=1...