2 matches found
CVE-2010-1091
CVE-2010-1091 affects phpMySite’s contact.php, enabling multiple XSS via the name, city, email, state, and message parameters. The affected component is the contact form handling in phpMySite. Root cause: unescaped user-supplied input in these fields. Impact: remote attackers can inject arbitrary...
CVE-2010-1091
Multiple cross-site scripting XSS vulnerabilities in contact.php in phpMySite allow remote attackers to inject arbitrary web script or HTML via the 1 name, 2 city, 3 email, 4 state, and 5 message parameters...