EUVD-2012-2267

Malware in sbrugna...

CVE-2012-2274

PivotX (2.3.2 and earlier) contains a cross-site scripting (XSS) vulnerability in pivotx/ajaxhelper.php where the file parameter is not properly sanitized. Exploitation allows remote attackers to inject arbitrary HTML/JS, potentially affecting administrator sessions. Evidence from multiple source...

PivotX 2.3.2 - 'ajaxhelper.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/53434/info PivotX is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...