2 matches found
CVE-2008-1753
Cross-site scripting XSS vulnerability in system/workplace/admin/workplace/sessions.jsp in Alkacon OpenCMS 7.0.3 allows remote attackers to inject arbitrary web script or HTML via the searchfilter parameter, a different vector than CVE-2008-1510...
CVE-2008-1510
CVE-2008-1510 describes a Cross-site scripting (XSS) vulnerability in Alkacon OpenCMS 7.0.3, specifically in the page system/workplace/admin/accounts/users_list.jsp. An attacker can inject arbitrary script/HTML via the (1) searchfilter or (2) listSearchFilter parameters, potentially affecting use...