Cross-site scripting (XSS) vulnerability in login.php in Game-Panel 2.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the message parameter, possibly requiring a URL encoded value.
CPE | Name | Operator | Version |
---|---|---|---|
game-panel | eq | 2.6.1 | |
game-panel | eq | 2.6 |