2 matches found
CVE-2014-10398
Multiple cross-site scripting XSS vulnerabilities in bsi.dll in Bank Soft Systems BSS RBS BS-Client. Private Client aka RBS BS-Client. Retail Client 2.5, 2.4, and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 DICTIONARY, 2 FILTERIDENT, 3 FROMSCHEME, 4 FromPoint, ...
CVE-2014-10398
The CVE-2014-10398 entry describes multiple XSS vulnerabilities in Bank Soft Systems (BSS) RBS BS-Client’s bsi.dll (Private Client/ Retail Client, versions 2.5, 2.4 and earlier). The issue allows remote attackers to inject arbitrary script/HTML via parameters DICTIONARY, FILTERIDENT, FROMSCHEME, ...