what you don't know can hurt you
Showing 1 - 1 of 1 RSS Feed


eFront Cross Site Scripting
Posted Jun 4, 2010
Authored by Mohammed Boumediane | Site vupen.com

VUPEN Web Vulnerability Research Team discovered multiple vulnerabilities in eFront. These issues are caused by input validation errors when processing the "remote_theme", "name", "system_email", "password_length", "math_server", "site_motto" and "site_name" parameters, which could be exploited by attackers to cause arbitrary scripting code to be executed by the user's browser in the security context of an affected Web site. Versions prior to 3.6.3 build 7400 are affected.

tags | advisory, web, arbitrary, vulnerability, xss
MD5 | 591b1026de08356082e4ec6a25a3b5aa
Page 1 of 1

Top Authors In Last 30 Days

packet storm

© 2020 Packet Storm. All rights reserved.

Security Services
Hosting By