2 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in index.cgi in Site-Up 2.64 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 search or 2 search mask field...
CVE-2007-5433
CVE-2007-5433 describes multiple cross-site scripting (XSS) vulnerabilities in Site-Up 2.64 and earlier within the index.cgi component. The affected vectors are the (1) search and (2) search mask fields, allowing remote attackers to inject arbitrary web script or HTML. The consolidated records al...