Flowers Cas.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23488/info FloweRS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the brows...

Cross site scripting

Cross-site scripting XSS vulnerability in cas.php in FloweRS 2.0 allows remote attackers to inject arbitrary web script or HTML via the rok parameter...

CVE-2007-2308

Cross-site scripting XSS vulnerability in cas.php in FloweRS 2.0 allows remote attackers to inject arbitrary web script or HTML via the rok parameter...

CVE-2007-2309

CVE-2007-2309 affects FloweRS 2.0, with a cross-site scripting vulnerability in cas.php exploitable via the den parameter. Remote attackers can inject arbitrary script/HTML. Connected sources confirm the component and parameter but do not provide concrete exploit details, impact beyond XSS, or re...

CVE-2007-2309

Cross-site scripting XSS vulnerability in cas.php in FloweRS 2.0 allows remote attackers to inject arbitrary web script or HTML via the den parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2007-2308

CVE-2007-2308 concerns a cross-site scripting (XSS) flaw in FloweRS 2.0, exposed via the rok parameter in cas.php. The vulnerability allows remote attackers to inject arbitrary web script or HTML. The description and CVE entries consistently reference FloweRS 2.0 and cas.php, with no explicit exp...

FloweRS v2.0 Cross Site Scripting

""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ Security Vulnerability Resear...