5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
45.6%
Cross-site scripting (XSS) vulnerability in DaDaBIK before 4.3 beta2, when the insert or edit feature is enabled, allows remote authenticated users to inject arbitrary web script or HTML via the select_single parameter.
secunia.com/advisories/42220
www.dadabik.org/index.php?function=show_changelog
www.securityfocus.com/bid/44826
exchange.xforce.ibmcloud.com/vulnerabilities/63219