4 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in surveyresult.php in eCardMAX FormXP 2007 allows remote attackers to inject arbitrary web script or HTML via the sid parameter...
CVE-2009-3598
The CVE-2009-3598 entry concerns a Cross-site scripting (XSS) vulnerability in survey_result.php of eCardMAX FormXP 2007. The flaw allows remote attackers to inject arbitrary web script or HTML via the sid parameter. Documented impact is the ability to execute script in a victim’s browser for aff...
eCardMAX FormXP - 'survey_result.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/44212/info FormXP is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...
eCardMAX FormXP - survey_result.php Cross-Site Scripting
eCardMAX FormXP - surveyresult.php Cross-Site Scripting source: https://www.securityfocus.com/bid/44212/info FormXP is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code ...