CVE-2019-7547

Name of the Vulnerable Software and Affected Versions SIDU version 6.0

Description An issue was discovered where the database name is not strictly filtered, allowing an attacker to insert a name containing an XSS Payload, leading to stored XSS.

Recommendations For SIDU version 6.0, consider implementing strict filtering for database names to prevent the insertion of malicious content, such as XSS Payloads, until a patch is available. As a temporary workaround, restrict access to the database to minimize the risk of exploitation.