Required CVE Record Information
Description
Multiple cross-site scripting (XSS) vulnerabilities in Paul Smith Computer Services vCAP 1.7.0 allow remote attackers to inject arbitrary web script or HTML via (1) the statusmsg parameter in RegisterPage.cgi or (2) a URI corresponding to a nonexistent file. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
References 4 Total
- secunia.com: 21862 third-party-advisory
- osvdb.org: 28809 vdb-entry
- vupen.com: ADV-2006-3569 vdb-entry
- osvdb.org: 28810 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- secunia.com: 21862 third-party-advisoryx_transferred
- osvdb.org: 28809 vdb-entryx_transferred
- vupen.com: ADV-2006-3569 vdb-entryx_transferred
- osvdb.org: 28810 vdb-entryx_transferred