3 matches found
CVE-2008-1969
Multiple cross-site scripting XSS vulnerabilities in Cezanne 6.5.1 and 7 allow remote attackers to inject arbitrary web script or HTML via the 1 LookUPId and 2 CbFun parameters to a CFLookUP.asp; 3 TitleParms, 4 WidgetsHeights, 5 WidgetsLinks, and 6 WidgetsTitles parameters to b...
CVE-2008-1967
Cross-site scripting XSS vulnerability in CFLogon/CFLogon.asp in Cezanne 6.5.1 and 7 allows remote attackers to inject arbitrary web script or HTML via the SleUserName parameter...
CVE-2008-1967
CVE-2008-1967 describes a Cross-site Scripting (XSS) vulnerability in CFLogon/CFLogon.asp for Cezanne 6.5.1 and 7, exploitable via the SleUserName parameter to inject arbitrary web script/HTML. Affected component: CFLogon.asp (Cezanne); root cause: insufficient input validation for SleUserName le...