undefinedmode - Security Researcher - Exploit Intelligence Platform

CVE-2019-12453 NOMISEC MEDIUM WRITEUP

Microstrategy Web < 10.1 - XSS

In MicroStrategy Web before 10.1 patch 10, stored XSS is possible in the FLTB parameter due to missing input validation.

CVSS 6.1

View Code

CVE-2019-12475 NOMISEC MEDIUM WRITEUP

Microstrategy Web < 10.4.6 - XSS

In MicroStrategy Web before 10.4.6, there is stored XSS in metric due to insufficient input validation.

CVSS 6.1

View Code

CVE-2018-6643 NOMISEC MEDIUM WORKING POC

Infoblox Netmri - XSS

Infoblox NetMRI 7.1.1 has Reflected Cross-Site Scripting via the /api/docs/index.php query parameter.

CVSS 6.1

View Code