Kajona cross-site scripting vulnerability (CNVD-2016-08093)

Kajona is an open source CMS written in PHP. A cross-site scripting attack vulnerability exists in Kajona version 4.7. An attacker can use this vulnerability to obtain cookies, inject keyloggers or bypass CSRF protection...

ATutor 2.2 - Multiple Cross-Site Scripting Vulnerabilities

Exploit for php platform in category web applications 1. Introduction Affected Product: Atutor 2.2 Fixed in: partly in ATutor 2.2.1-RC1, complete in 2.2.1 Fixed Version Link: http://www.atutor.ca/atutor/download.php Vendor Website: http://www.atutor.ca/ Vulnerability Type: XSS Remote Exploitable:...