Elxis CMS 2008.1 modules/mod_language.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/31764/info Elxis CMS is prone to multiple cross-site scripting and session-fixation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The application is also prone to a session-fixation...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Elxis CMS 2008.1 revision 2204 allows remote attackers to inject arbitrary web script or HTML via the 1 PATHINFO or the 2 option, 3 Itemid, 4 id, 5 task, 6 bid, and 7 contactid parameters. NOTE: the error might be located in...