Cross-site scripting (XSS) vulnerability in searchdb.asp in LocazoList 1.03c and earlier allows remote attackers to inject arbitrary web script or HTML via the q parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Locazolist_classifieds | Locazo | * | 1.03c (including) |