CVE-2019-7748 – _includesonline.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if _users …

Vuln ID: CVE-2019-7748

Published:  2019-02-11  21:29:00Z

Description: _includesonline.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if _users/admin/tasks.php exists.

Source: NVD.NIST.GOV

 

Tags