LAN Management System (LMS) druk.php OD Variable XSS

2007-04-06T11:48:51
ID OSVDB:35479
Type osvdb
Reporter OSVDB
Modified 2007-04-06T11:48:51

Description

Solution Description

Upgrade to version 1.6.9 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.lms.org.pl/ Vendor Specific Solution URL: http://www.lms.org.pl/download/1.6/lms-1.6.9.tar.gz Secunia Advisory ID:25067 FrSIRT Advisory: ADV-2007-1580 CVE-2007-2198 Bugtraq ID: 23715