CVE-2007-6597

Multiple cross-site scripting XSS vulnerabilities in IPortalX before Build 033 allow remote attackers to inject arbitrary web script or HTML via the 1 KW and 2 SF parameters to forum/loginuser.asp, and 3 the Date parameter to blogs.asp...

PT-2007-7428 · Iportalx · Iportalx

Name of the Vulnerable Software and Affected Versions: IPortalX versions prior to Build 033 Description: The issue concerns multiple cross-site scripting XSS vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML. The affected API endpoints include...