RSS   Podatności dla 'Portal search'   RSS

2007-02-14
 
CVE-2007-0923

CWE-Other
 

 
buscador/buscador.htm in Portal Search allows remote attackers to obtain sensitive information (business logic) via a query string composed of a search for certain characters.

 
 
CVE-2007-0922

CWE-Other
 

 
Cross-site scripting (XSS) vulnerability in buscador/buscador.htm in Portal Search allows remote attackers to inject arbitrary web script or HTML via the query string.

 
 
CVE-2007-0921

CWE-Other
 

 
Portal Search allows remote attackers to redirect a URL to an arbitrary web site by placing the URL in the query string to the top-level URI.

 


Copyright 2024, cxsecurity.com

 

Back to Top