2 matches found
YABSoft Advanced Image Hosting Script 2.x 'search.php' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/37233/info YABSoft Advanced Image Hosting Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...
CVE-2009-4266
Cross-site scripting XSS vulnerability in search.php in YABSoft Advanced Image Hosting AIH Script 2.2, and possibly 2.3, allows remote attackers to inject arbitrary web script or HTML via the text parameter...