Fotoware Fotoweb Cross-site Scripting Vulnerability

Fotoware Fotoweb is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Fotoware Fotoweb Remote Version Detection

Detects the installed version of Fotoware Fotoweb. This script sends an HTTP GET request and tries to get the version from the response. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Fotoware Fotoweb 'to' Parameter Cross-Site Scripting Vulnerability

Fotoware Fotoweb is an enterprise-level digital asset management system DMS from Fotoware Norway. A cross-site scripting vulnerability exists in Fotoware Fotoweb, which can be exploited by an attacker to execute arbitrary script code, steal cookie-based authentication and launch other attacks...

Fotoware Fotoweb 8.0 Cross Site Scripting

S21Sec Advisory - - S21SEC-047-en.txt - Title: Fotoware Fotoweb 8.0 Cross Site Scripting XSS ID: S21sec-047-en Severity: Low History: May.2016 Vulnerability discovered June.2016 Vendor contacted July.2016 Vendor patch acknowledge. Scope: Cross Site Scripting XSS Platforms: Any Author: Miguel A...