Launchpad.net

Launchpad CVE tracker

CVE 2019-7748

_includes\online.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if _users/admin/tasks.php exists.

See the

CVE page on Mitre.org for more details.

References

MISC: https://github.com/edd...