|Category:||Web application abuses|
|Summary:||The remote host runs phpCMS, a content management system; written in PHP.;; This version is vulnerable to cross-site scripting due to a lack of; sanitization of user-supplied data in parser.php script.|
The remote host runs phpCMS, a content management system
written in PHP.
This version is vulnerable to cross-site scripting due to a lack of
sanitization of user-supplied data in parser.php script.
Successful exploitation of this issue may allow an attacker to execute
malicious script code on a vulnerable server.
Upgrade to version 1.2.1pl1 or newer.
BugTraq ID: 11765|
Common Vulnerability Exposure (CVE) ID: CVE-2004-1202
Bugtraq: 20041126 phpCMS <= 1.2.1 Xss Vulnerability, Information disclosure (Google Search)
XForce ISS Database: phpcms-parser-xss(18272)
|Copyright||Copyright (C) 2004 David Maciejak|
|This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.