Multiple cross-site scripting (XSS) vulnerabilities in functions.inc.php for Double Choco Latte 0.9.4.3 allow remote attackers to inject arbitrary web script or HTML via the (1) class or (2) method name.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Double_choco_latte | Michael_dean | 0.9.4.3 (including) | 0.9.4.3 (including) |
References
- http://secunia.com/advisories/14688
- http://securitytracker.com/id?1013559
- http://sourceforge.net/project/shownotes.php?release_id=315160
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19805
- http://secunia.com/advisories/14688
- http://securitytracker.com/id?1013559
- http://sourceforge.net/project/shownotes.php?release_id=315160
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19805