|Category:||CGI abuses : XSS|
|Title:||RunCMS < 1.3b ratefile.php Cross Site Scripting|
The remote version of RunCMS, according to its version
number, is vulnerable to a cross-site scripting attack
via the 'ratefile.php' script as a result of insufficient
sanitization of user supplied input.
Versions prior to 1.3b are thought to be vulnerable.
Solution : Upgrade to a later version.
Risk factor : Medium
BugTraq ID: 16769|
Common Vulnerability Exposure (CVE) ID: CVE-2006-0875
Bugtraq: 20060222 [KAPDA::#27] - Runcms 1.x Cross_Site_Scripting vulnerability (Google Search)
XForce ISS Database: runcms-ratefile-xss(24871)
|Copyright||Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com|
|This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.