Unrated severityNVD Advisory· Published Aug 14, 2019· Updated Aug 5, 2024
CVE-2018-19386
CVE-2018-19386
Description
SolarWinds Database Performance Analyzer 11.1.457 contains an instance of Reflected XSS in its idcStateError component, where the page parameter is reflected into the HREF of the 'Try Again' Button on the page, aka a /iwc/idcStateError.iwc?page= URI.
Affected products
2- SolarWinds/Database Performance Analyzerdescription
- Range: 11.1.457
Patches
Vulnerability mechanics
References
2- i.imgur.com/Y7t2AD6.pngmitrex_refsource_MISC
- medium.com/greenwolf-security/reflected-xss-in-solarwinds-database-performance-analyzer-988bd7a5cd5mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.