Cross-site scripting vulnerability in WebSight Directory System 0.1 allows remote attackers to execute arbitrary Javascript and gain access to the WebSight administrator via a new link submission containing the script in a website name.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Websight_directory_system | Websight_directory_system | 0.1 (including) | 0.1 (including) |
References
- http://sourceforge.net/forum/forum.php?forum_id=163389
- http://www.iss.net/security_center/static/8624.php
- http://www.securityfocus.com/archive/1/263914
- http://www.securityfocus.com/bid/4357
- http://sourceforge.net/forum/forum.php?forum_id=163389
- http://www.iss.net/security_center/static/8624.php
- http://www.securityfocus.com/archive/1/263914
- http://www.securityfocus.com/bid/4357