Cross-site scripting (XSS) vulnerability in index.cfm in Hot Banana Web Content Management Suite 5.3 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Web_content_management_suite | Hot_banana | 5.3 (including) | 5.3 (including) |
References
- http://pridels0.blogspot.com/2005/12/hot-banana-xss-vuln.html
- http://secunia.com/advisories/18126
- http://www.osvdb.org/21786
- http://www.securityfocus.com/bid/15948
- http://www.vupen.com/english/advisories/2005/2992
- http://pridels0.blogspot.com/2005/12/hot-banana-xss-vuln.html
- http://secunia.com/advisories/18126
- http://www.osvdb.org/21786
- http://www.securityfocus.com/bid/15948
- http://www.vupen.com/english/advisories/2005/2992