2 matches found
CVE-2010-0675
Cross-site scripting XSS vulnerability in index.php in BGSvetionik BGS CMS 2.2.1 allows remote attackers to inject arbitrary web script or HTML via the search parameter in a search action. NOTE: some of these details are obtained from third party information...
CVE-2010-0675
CVE-2010-0675 affects BGSvetionik BGS CMS 2.2.1. The vulnerability is a Cross-site Scripting (XSS) in index.php that allows remote attackers to inject arbitrary web script or HTML via the search parameter in a search action. Root cause is insufficient sanitization/validation of the search paramet...