Multiple cross-site scripting (XSS) vulnerabilities in dynaliens 2.0 and 2.1 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) recherche.php3 or (2) ajouter.php3.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Dynaliens | Dynaliens | 2.0 (including) | 2.0 (including) |
| Dynaliens | Dynaliens | 2.1 (including) | 2.1 (including) |
References
- http://forums.avenir-geopolitique.net/viewtopic.php?t=2722
- http://securityreason.com/securityalert/2403
- http://www.securityfocus.com/archive/1/462221/100/0/threaded
- http://www.securityfocus.com/bid/22874
- http://forums.avenir-geopolitique.net/viewtopic.php?t=2722
- http://securityreason.com/securityalert/2403
- http://www.securityfocus.com/archive/1/462221/100/0/threaded
- http://www.securityfocus.com/bid/22874