3 matches found
CVE-2012-1000
Multiple cross-site scripting XSS vulnerabilities in LEPTON 1.1.3 and other versions before 1.1.4 allow remote attackers to inject arbitrary web script or HTML via the 1 message parameter to admins/login/forgot/index.php, or the 2 displayname or 3 email parameter to account/preferences.php...
LEPTON 1.1.3 - Cross-Site Scripting
LEPTON 1.1.3 - Cross-Site Scripting source: https://www.securityfocus.com/bid/52026/info LEPTON is prone to multiple input-validation vulnerabilities, including: 1. A cross-site scripting vulnerability 2. An SQL-injection vulnerability 3. A local file-include vulnerability 4. Multiple...
LEPTON 1.1.3 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/52026/info LEPTON is prone to multiple input-validation vulnerabilities, including: 1. A cross-site scripting vulnerability 2. An SQL-injection vulnerability 3. A local file-include vulnerability 4. Multiple HTML-injection vulnerabilities Exploiting these...