Multiple cross-site scripting (XSS) vulnerabilities in account/index.html in RotaBanner Local 3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) user or (2) drop parameter.
CPE | Name | Operator | Version |
---|---|---|---|
rotabanner_local | le | 3 |