what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Spiceworks 6.0.00993 Cross Site Scripting

Posted Sep 17, 2012

Authored by LiquidWorm | Site zeroscience.mk

Spiceworks suffers from multiple stored cross site scripting vulnerabilities. The issues are triggered when input passed via several parameters to several scripts is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. Versions 6.0.00993 and 6.0.00966 are affected.

tags | exploit, arbitrary, vulnerability, xss

SHA-256 | 4ce5933102d2ccf865d7267ad00d42bf306c382f9f03e4434c196f2d1258452f

Download | Favorite | View

Related Files

No related files