JAWS HTML injection vulnerabilities

The remote version of JAWS does not perform a proper validation of user-supplied input to several variables used in the SPDX-FileCopyrightText: 2005 Josh Zlatin-Amishav Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

CVE-2005-1231

Cross-site scripting XSS vulnerability in the NewTerm function in GlossaryModel.php in JAWS 0.4 allows remote attackers to inject arbitrary web script or HTML via the 1 term or 2 description...

CVE-2005-1231

CVE-2005-1231 – JAWS 0.4 XSS in GlossaryModel.php . The issue arises in the NewTerm function of GlossaryModel.php where improper validation of user-supplied input (term and description) enables remote injection of arbitrary web script/HTML. This vulnerability is corroborated by multiple sources i...

[UNIX] Jaws Cross Site Scripting (GlossaryModel.php)

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...