2 matches found
CVE-2004-1202
Cross-site scripting XSS vulnerability in parser.php in phpCMS 1.2.1 and earlier, with non-stealth and debug modes enabled, allows remote attackers to inject arbitrary web script or HTML via the file parameter...
CVE-2004-1202
CVE-2004-1202 affects phpCMS up to version 1.2.1, where parser.php fails to sanitize user input in the file parameter, enabling cross-site scripting (XSS). Multiple connected sources confirm this vulnerability in phpCMS and link it to XSS via parser.php with non-stealth and debug modes. Impact is...