Описание
Cross-site scripting (XSS) vulnerability in index.php in eTicket 1.5.6-RC4 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
Cross-site scripting (XSS) vulnerability in index.php in eTicket 1.5.6-RC4 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-0552
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39968
- http://securityreason.com/securityalert/3601
- http://www.lonerunners.net/users/jekil/pub/hack-eticket/hack-eticket.txt
- http://www.securityfocus.com/archive/1/487133/100/0/threaded
- http://www.securityfocus.com/bid/27473
- http://www.securitytracker.com/id?1019278
Связанные уязвимости
nvd
около 18 лет назад
Cross-site scripting (XSS) vulnerability in index.php in eTicket 1.5.6-RC4 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.