PhpGedView 4.1 Login.PHP Cross Site Scripting Vulnerability

ID SSV:83916
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00


No description provided by source.


PhpGedView is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.

Exploiting this vulnerability may allow an attacker to perform cross-site scripting attacks on unsuspecting users in the context of the affected website. As a result, the attacker may be able to steal cookie-based authentication credentials and to launch other attacks.

PhpGedView 4.1 is vulnerable; other versions may also be affected.[xss]