2 matches found
CVE-2014-9468
InstantASP InstantForum.NET has multiple XSS vulnerabilities (CVE-2014-9468) affecting versions 4.1.3, 4.1.2, 4.1.1, 4.0.0, 4.1.0 and 3.4.0. The issue is a reflected cross-site scripting vulnerability: attacker-supplied input in the SessionID parameter is echoed in Join.aspx or Logon.aspx, enabli...
InstantASP InstantForum.NET 3.x / 4.x Cross Site Scripting
CVE-2014-9468 InstantASP InstantForum.NET Multiple XSS Cross-Site Scripting Security Vulnerabilities Exploit Title: InstantASP InstantForum.NET Multiple XSS Cross-Site Scripting Security Vulnerabilities Product: InstantForum.NET Vendor: InstantASP Vulnerable Versions: v4.1.3 v4.1.1 v4.1.2 v4.0.0...