2 matches found
CVE-2017-9085
Multiple cross-site scripting XSS vulnerabilities in Kodak InSite 6.5 to 8.0 allow remote attackers to inject arbitrary web script via the 1 "paramFile" parameter to /Site/Troubleshooting/DiagnosticReport.asp, or 2 "paramFile" parameter to /Site/Troubleshooting/SpeedTest.asp...
CVE-2017-9085
Kodak InSite (versions 6.5–8.0) is affected by cross-site scripting (XSS) via the parameterFile parameter to two pages: /Site/Troubleshooting/DiagnosticReport.asp and /Site/Troubleshooting/SpeedTest.asp. The vulnerability allows remote attackers to inject arbitrary web scripts. The sources in the...