2 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in login.php in TGS Content Management 0.x allows remote attackers to inject arbitrary web script or HTML via the previouspage parameter, a different vector than CVE-2008-6839...
CVE-2008-6839
Multiple cross-site scripting XSS vulnerabilities in TGS Content Management 0.3.2r2 allow remote attackers to inject arbitrary web script or HTML via the 1 msg and 2 goodmsg parameters to a login.php and b index.php, and the 3 dir and 4 id parameters to index.php. NOTE: the provenance of this...