Vulnerabilities (CVE)

Filtered by vendor Jsp\/mysql Administrador Web Project Subscribe
Filtered by product Jsp\/mysql Administrador Web
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-6945 1 Jsp\/mysql Administrador Web Project 1 Jsp\/mysql Administrador Web 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to inject arbitrary web script or HTML via the bd parameter to sys/sys/listaBD2.jsp.
CVE-2015-6944 1 Jsp\/mysql Administrador Web Project 1 Jsp\/mysql Administrador Web 2024-11-21 6.8 MEDIUM N/A
Cross-site request forgery (CSRF) vulnerability in JSP/MySQL Administrador Web 1 allows remote attackers to hijack the authentication of users for requests that execute arbitrary SQL commands via the cmd parameter to sys/sys/listaBD2.jsp.