2 matches found
CVE-2008-1414
CVE-2008-1414 : The vulnerability affects Multiple Time Sheets (MTS) 5.0 and earlier. A cross-site scripting (XSS) flaw exists where an attacker can inject arbitrary script or HTML via the tab parameter to index.php, or to clientinfo.php, invoices.php, smartlinks.php, and todo.php, demonstrated b...
CVE-2008-1414
Cross-site scripting XSS vulnerability in Multiple Time Sheets MTS 5.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the tab parameter to 1 index.php, as demonstrated using mixed case and encoded whitespace characters in the tag; or 2 clientinfo.php, 3 invoices.ph...