RSS   Vulnerabilities for 'Bloghoster'   RSS

2006-08-11
 
CVE-2006-4090

CWE-Other
 

 
Cross-site scripting (XSS) vulnerability in Webligo BlogHoster 2.2 allows remote attackers to inject arbitrary web script or HTML via the "From: part of the comment post," probably involving the nickname parameter to previewcomment.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top