Cross-site scripting (XSS) vulnerability in the search feature in ColdGen ColdUserGroup 1.06 allows remote attackers to inject arbitrary web script or HTML via the Keywords parameter. NOTE: some of these details are obtained from third party information.
CPE | Name | Operator | Version |
---|---|---|---|
coldusergroup | eq | 1.06 |