CVE-2012-1001

Multiple cross-site scripting (XSS) vulnerabilities in Chyrp before 2.1.2 and before 2.5 Beta 2 allow remote attackers to inject arbitrary web script or HTML via the (1) content parameter to includes/ajax.php or (2) body parameter to includes/error.php.

View Full Alert

Related Posts

  • CVE-2012-0812

    PostfixAdmin 2.3.4 has multiple XSS vulnerabilities View Full Alert

  • CVE-2012-0824

    gnusound 0.7.5 has format string issue View Full Alert

  • CVE-2012-0877

    PyXML: Hash table collisions CPU usage Denial of Service View Full Alert