22 matches found
CVE-2007-4141
OpenRat CMS 0.8-beta1 and earlier is affected by an information-disclosure vulnerability in index.php via an XSS sequence in the action parameter, causing an error message that reveals the path. Affected component: index.php handling the action parameter. Root cause: unescaped input in the XSS ve...
CVE-2007-4141
OpenRat CMS 0.8-beta1 and earlier allows remote attackers to obtain sensitive information via a request containing an XSS sequence in the action parameter to index.php, which reveals the path in an error message...