XSS Vulnerability in DbNinja 3.2.7 via data.php Task Parameter

XSS Vulnerability in DbNinja 3.2.7 via data.php Task Parameter

CVE-2019-7748 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

_includes\online.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if _users/admin/tasks.php exists.

Learn more about our User Device Pen Test.