2 matches found
CVE-2009-2437
Multiple cross-site scripting XSS vulnerabilities in index.php in Rentventory 1.0.1 allow remote attackers to inject arbitrary web script or HTML via the 1 username aka Login and 2 password parameters in a login action...
CVE-2009-2437
CVE-2009-2437 affects Rentventory 1.0.1. The vulnerability is described as multiple cross-site scripting (XSS) flaws in index.php, exploitable through the login action via the (1) username and (2) password parameters. The connected documents confirm the issue as XSS but do not provide technical s...