3 matches found
CVE-2010-5046
Cross-site scripting XSS vulnerability in admin.php in ecoCMS allows remote attackers to inject arbitrary web script or HTML via the p parameter...
CVE-2010-5046
CVE-2010-5046 is a Cross‑Site Scripting (XSS) flaw in ecoCMS: the admin.php script vulnerable via the p parameter allows remote attackers to inject arbitrary script/HTML. The vulnerability affects ecoCMS’ admin page and can be triggered by crafting requests to admin.php?p=…; exploitation details ...
Cross-site Scripting Vulnerability in ecoCMS
High-Tech Bridge SA Security Research Lab has discovered vulnerability in ecoCMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in ecoCMS: CVE-2010-5046 Input validation error was found in the "p" parameter in /admin.php. A remote attack...