3 matches found
Dotclear vulnerable to cross-site scripting
Overview Dotclear is a weblog software. Dotclear contains a cross-site scripting vulnerability. Yuji Tounai of NTT Com SecurityJapanKK reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact If a user views a...
JVN#65668004: Dotclear vulnerable to cross-site scripting
Dotclear is a weblog software. Dotclear contains a cross-site scripting vulnerability. Impact If a user views a specially crafted page while logged in, an arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the latest version according to the...
iwebnegar.txt
----------------www.karchack.com---------------- ----------------www.karchack.net---------------- describtion : iwebnegar is farsi weblog software written in php http://iwebnegar.co.sr --------- vulnerabilities : all files seems to be vulnerable such as comments.php , index.php and also...