2 matches found
CVE-2008-6385
Cross-site scripting XSS vulnerability in index.php in W3matter RevSense 1.0 allows remote attackers to inject arbitrary web script or HTML via the section parameter...
CVE-2008-6385
RevSense 1.0 (W3matter) is vulnerable to a cross-site scripting (XSS) flaw in index.php via the section parameter, caused by insufficient input sanitization. OpenVAS also documents an SQL injection vulnerability for RevSense <= 1.0, sharing the same root cause. Impact per sources includes pote...