VYPR

SIDU

by SIDU

CVEs (2)

  • CVE-2019-7546MedFeb 6, 2019
    risk 0.40cvss 6.1epss 0.01

    An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting (XSS) vulnerability.

  • CVE-2019-7547MedFeb 6, 2019
    risk 0.31cvss 4.8epss 0.01

    An issue was discovered in SIDU 6.0. Because the database name is not strictly filtered, the attacker can insert a name containing an XSS Payload, leading to stored XSS.