2 matches found
CVE-2009-1775
CVE-2009-1775 affects Ulteo Open Virtual Desktop 1.0. The issue comprises multiple cross-site scripting (XSS) vulnerabilities exploitable via user-controlled parameters on several admin endpoints: id parameter in admin/applications.php, admin/appsgroup.php, admin/users.php, admin/usersgroup.php, ...
CVE-2009-1785
CVE-2009-1785 affects Ulteo Open Virtual Desktop 1.0. The vulnerability is a cross-site scripting (XSS) flaw where an attacker can inject arbitrary web script or HTML via the error parameter to header.php. The issue is confirmed by multiple connected sources (e.g., Red Hat and NVD records) and is...