3 matches found
CVE-2003-1539
Cross-site scripting XSS vulnerability in ONEdotOH Simple File Manager SFM before 0.21 allows remote attackers to inject arbitrary web script or HTML via 1 file names and 2 directory names...
CVE-2003-1539
The CVE-2003-1539 entry affects the ONEdotOH Simple File Manager (SFM) CGI (fm.php) prior to version 0.21. The vulnerability arises from improper validation of directory and file names, enabling cross-site scripting (XSS) by an attacker who can supply crafted names. Impact is remote XSS via manip...
CVE-2003-1539
Cross-site scripting XSS vulnerability in ONEdotOH Simple File Manager SFM before 0.21 allows remote attackers to inject arbitrary web script or HTML via 1 file names and 2 directory names...