SecuritySpace - CVE-2010-3314

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2010-3314

Description: Cross-site scripting (XSS) vulnerability in login.php in EGroupware 1.4.001+.002; 1.6.001+.002 and possibly other versions before 1.6.003; and EPL 9.1 before 9.1.20100309 and 9.2 before 9.2.20100309; allows remote attackers to inject arbitrary web script or HTML via the lang parameter.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2010-3314
Debian Security Information: DSA-2013 (Google Search)
http://www.debian.org/security/2010/dsa-2013
http://www.exploit-db.com/exploits/11777/
http://www.openwall.com/lists/oss-security/2010/09/21/7

CVE ID:	CVE-2010-3314
Description:	Cross-site scripting (XSS) vulnerability in login.php in EGroupware 1.4.001+.002; 1.6.001+.002 and possibly other versions before 1.6.003; and EPL 9.1 before 9.1.20100309 and 9.2 before 9.2.20100309; allows remote attackers to inject arbitrary web script or HTML via the lang parameter.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3314 Debian Security Information: DSA-2013 (Google Search) http://www.debian.org/security/2010/dsa-2013 http://www.exploit-db.com/exploits/11777/ http://www.openwall.com/lists/oss-security/2010/09/21/7