Categories

Applications (222)
Blogs (7)
Content Management (148)
Customer Relationship (2)
Discussion Boards (29)
E-Commerce (14)
General Purpose Directories (2)
Image Galleries (18)
Mailing Lists (1)
Tips (3)
Vulnerabilities (337)
Access Bypass (50)
Cross Site Scripting (123)
Denial Of Service (2)
File Inclusion (51)
Information Disclosure (15)
Privilege Escalation (2)
Remote Command Execution (16)
Session Hijacking (2)
SQL Injection (130)
« Drupal Token Module Script Insertion Vulnerability
Simple PHP Blog Multiple Vulnerabilities »

CandyPress “msg” Cross-Site Scripting Vulnerability

Published by David November 21st, 2007 in Cross Site Scripting.

Application: CandyPress
Affected Version: CandyPress 4.x
Vendor’s URL: Software site
Bug Type: Cross Site Scripting
Risk Level: Low

Solution:
Edit the source code or consult software provider.

0 Responses to “CandyPress “msg” Cross-Site Scripting Vulnerability”

Feed for this Entry Trackback Address
  1. No Comments

Leave a Reply

You must login to post a comment.

« Drupal Token Module Script Insertion Vulnerability
Simple PHP Blog Multiple Vulnerabilities »

Subscribe

Latest

Archives



Valid XHTML 1.0 Transitional