29 July, 2011
25 July, 2011
Online Grades 3.2.5 Multiple XSS Vulnerabilites
Online Grades suffers from multiple cross-site scripting vulns. The issue is triggered when input passed via multiple parameters to the 'admin/admin.php' script is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
---
Advisory: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2011-5029.php
---
Advisory: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2011-5029.php
Subscribe to:
Posts (Atom)