CVE-2009-2615
DataCheck Solutions SitePal 1.x is affected by multiple XSS vulnerabilities. The issue allows remote attackers to inject arbitrary script/HTML via the page parameter to z_admin_login.asp and z_forgot.asp (and possibly other components). Root cause is unsafely reflected input without proper saniti...