Cross-site scripting (XSS) vulnerability in search.php in PHP Classifieds 6.18, 6.20, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the searchword parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Php_classifieds | Deltascripts | 6.18 | 6.18 |
Php_classifieds | Deltascripts | 6.20 | 6.20 |