2 matches found
CVE-2012-2637
CVE-2012-2637 affects WEB PATIO software (WEB PATIO Ver.4.04 and earlier). The vulnerability is a cross-site scripting (XSS) issue arising from how cookies are handled, enabling remote attackers to inject arbitrary script/HTML via a crafted cookie. Impact per sources is browser-executable arbitra...
CVE-2012-2636
CVE-2012-2636 concerns a cross-site scripting (XSS) vulnerability in WEB PATIO (KENT-WEB) version 4.04 and earlier. Multiple connected sources confirm the flaw enables an attacker to cause arbitrary web-script or HTML execution in a victim’s browser through unspecified vectors in WEB PATIO’s hand...