Cross Site Scripting (XSS)

phpxmlrpc/extras is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to inadequate input validation within the documentingxmlrpcserver class when processing the GET methodName parameter, which allows attackers to execute malicious scripts in the context of the user's browser,...

PT-2024-40512 · Unknown · Phpxmlrpc/Extras

Name of the Vulnerable Software and Affected Versions: phpxmlrpc/extras versions prior to 0.6.1 Description: The issue exists within the class documenting xmlrpc server when processing the methodName parameter in GET requests, specifically through the API endpoint, allowing for a Cross-Site...