Cross site scripting

Cross-site scripting XSS vulnerability in bsauth.php in Blogator-script 0.95 and 1.01 allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2008-1892

Blogator-script 0.95 and 1.01 are affected by a Cross-Site Scripting (XSS) vulnerability in bs_auth.php where the msg parameter is not properly sanitized. This allows remote attackers to inject arbitrary web script or HTML, potentially compromising users’ browsers (e.g., stealing cookies) when in...