PT-2014-2878
Name of the Vulnerable Software and Affected Versions Digital Signage Xibo version 1.4.2 Description The issue allows remote attackers to hijack the authentication of administrators for requests, including adding a new administrator via the AddUser action or conducting cross-site scripting XSS...