2 matches found
CVE-2008-7043
CVE-2008-7043 affects FreshScripts Fresh Email Script 1.0–1.11. The vulnerability is in the register.php flow where the Email parameter can be exploited to inject arbitrary web script or HTML (XSS). The described impact includes potential cookie modification and session fixation attacks. Exploita...
CVE-2008-7043
Cross-site scripting XSS vulnerability in register.php in FreshScripts Fresh Email Script 1.0 through 1.11 allows remote attackers to inject arbitrary web script or HTML via the Email parameter. NOTE: this can be leveraged to modify cookies and conduct session fixation attacks...