CVE-2017-10798

In ObjectPlanet Opinio before 7.6.4, there is XSS...

CVE-2017-10798

ObjectPlanet Opinio vulnerable to a reflected XSS in versions up to 7.6.3, fixed in 7.6.4. The issue affects the /admin/reportPortal.do page via the userLanguage GET parameter, exploitable by remote unauthenticated users. Proof-of-concept shows a crafted input can trigger script execution; upgrad...

ObjectPlanet Opinio Cross-Site Scripting Vulnerability

ObjectPlanet Opinio is a user survey software from ObjectPlanet USA. A cross-site scripting vulnerability exists in versions of ObjectPlanet Opinio prior to 7.6.4. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

Unfixed XSS vulnerability at support.objectplanet.com

Security researcher tenest, has submitted on 20/06/2008 a cross-site-scripting XSS vulnerability affecting support.objectplanet.com, which at the time of submission ranked 369640 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/11/2008. It is...

Unfixed XSS vulnerability at support.objectplanet.com

Security researcher BackDoor, has submitted on 13/09/2007 a cross-site-scripting XSS vulnerability affecting support.objectplanet.com, which at the time of submission ranked 324256 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 18/09/2007. It ...