Dbninja: >> Dbninja >> 3.2.7 Security Vulnerabilities
DbNinja 3.2.7 allows session fixation via the data.php sessid parameter.
CVSS Score
9.6
EPSS Score
0.004
Published
2019-02-11
_includes\online.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if _users/admin/tasks.php exists.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-02-11
In DbNinja 3.2.7, the Add Host function of the Manage Hosts pages has a Stored Cross-site Scripting (XSS) vulnerability in the User Name field.
CVSS Score
5.4
EPSS Score
0.002
Published
2019-02-06