3 matches found
CVE-2009-4972
Cross-site scripting XSS vulnerability in index.php aka the log in page in SimpleID before 0.6.5 allows remote attackers to inject arbitrary web script or HTML via the s parameter...
SimpleID 'index.php' Cross Site Scripting Vulnerability
This host is running SimpleID and is prone to cross site scripting vulnerability. OpenVAS Vulnerability Test $Id: gbsimpleidxssvuln.nasl 5373 2017-02-20 16:27:48Z teissa $ SimpleID 'index.php' Cross Site Scripting Vulnerability Authors: Madhuri D Copyright: Copyright C 2010 Greenbone Networks Gmb...
CVE-2009-4972
The CVE pertains to SimpleID before version 0.6.5 where the login page (index.php) is vulnerable to Cross-Site Scripting via the s parameter. The flaw allows remote attackers to inject arbitrary script/HTML in the context of the affected web page, with no authentication required and no confidenti...