2 matches found
dew-newphplinks 2.0 (lfi/xss) Multiple Vulnerabilities
No description provided by source. ------------------------------------------------------------------------------------------------ DEW-NEWphpLinks 2.0 LFI/XSS Multiple Remote Vulnerabilities http://www.dew-code.com...
CVE-2009-1623
The CVE-2009-1623 entry describes a cross-site scripting (XSS) vulnerability in Dew-NewPHPLinks 2.0, specifically in index.php where the PID parameter can be used by remote attackers to inject arbitrary web script or HTML. The document notes XSS originating from the PID parameter but does not pro...