RSS   Vulnerabilities for 'Blackbook'   RSS

2008-05-13
 
CVE-2008-2188

CWE-79
 

 
Multiple cross-site scripting (XSS) vulnerabilities in EJ3 BlackBook 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) bookCopyright and (2) ver parameters to (a) footer.php, and the (3) bookName, (4) bookMetaTags, and (5) estiloCSS parameters to (b) header.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top