MapOS Stored Cross-Site Scripting Vulnerability
MapOS is a free service order control system based on PHP and MySQL. A cross-site scripting vulnerability exists in /clientes/visualizar in MapOS 3.1.11 and earlier versions. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML with the help of specially crafted...