3 matches found
CVE-2008-7222
Cross-site scripting XSS vulnerability in system/admin.php in RunCMS 1.6.1 allows remote attackers to inject arbitrary web script or HTML via the ranktitle parameter in a RankForumAdd action...
CVE-2008-7222
CVE-2008-7222 describes a cross-site scripting (XSS) vulnerability in RunCMS 1.6.1, specifically in the system/admin.php module. The issue arises when handling the RankForumAdd action, where an attacker can inject arbitrary web script or HTML via the rank_title parameter. Documents consistently i...
runcms161-multi.txt
RunCMS 1.6.1 Multiple XSS and XSRF Vulnerabilties by NBBN b 1 Create Webmaster admin XSRF Vulnerability/b input type="hidde...