PHD Help Desk 1.43 solic_display.php q_registros Parameter XSS

ID SSV:86578
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00


No description provided by source.

PHD Help Desk is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data.
Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially allowing the attacker to steal cookie-based authentication credentials; other attacks are also possible.
PHD Help Desk 1.43 is vulnerable; other versions may also be affected.[code]&orden=seq_solicitud_id