CVE-2019-7748

CVE-2019-7748

EPSS 0.9%

_includes\online.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if _users/admin/tasks.php exists.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/eddietcc/CVEnotes/blob/master/DBNinja/Reflect_XSS/readme.md