CVE ID:

CVE-2019-7748

Details:

_includes\online.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if _users/admin/tasks.php exists.

References:

:https://github.com/eddietcc/notes/blob/master/DBNinja/Reflect_XSS/readme.md

ZeroDayLab Assigned Tags:

CROSS SITE SCRIPTING - What is Cross Site Scripting?