RSS   Vulnerabilities for 'Ximdex'   RSS

2018-06-13
 
CVE-2018-12273

CWE-79
 

 
The /edit URI in the DMS component in Ximdex 4.0 has XSS via the Ciudad or Nombre parameter.

 
 
CVE-2018-12272

CWE-79
 

 
xowl/request.php in Ximdex 4.0 has XSS via the content parameter.

 
2018-06-07
 
CVE-2018-12047

CWE-79
 

 
xfind/search in Ximdex 4.0 has XSS via the filter[n][value] parameters for non-negative values of n, as demonstrated by n equal to 0 through 12.

 
2018-06-05
 
CVE-2018-11735

CWE-79
 

 
index.php?action=createaccount in Ximdex 4.0 has XSS via the sname or fname parameter.

 


Copyright 2018, cxsecurity.com

 

Back to Top