3 matches found
CVE-2005-3397
Cross-site scripting XSS vulnerability in Comersus BackOffice allows remote attackers to inject arbitrary web script or HTML via the error parameter to comersusbackofficesupportError.asp. NOTE: the comersusbackofficemessage.asp/message vector is already covered by CVE-2005-2191 item 2...
CVE-2005-3397
Cross-site scripting XSS vulnerability in Comersus BackOffice allows remote attackers to inject arbitrary web script or HTML via the error parameter to comersusbackofficesupportError.asp. NOTE: the comersusbackofficemessage.asp/message vector is already covered by CVE-2005-2191 item 2...
CVE-2005-3397
CVE-2005-3397 describes a cross-site scripting (XSS) vulnerability in the Comersus BackOffice. The issue is exploitable via the error parameter to the script comersus_backoffice_supportError.asp , allowing remote attackers to inject arbitrary web script or HTML. The description notes that the rel...