 | |
| |||||||
| Home | Register | Projects | Blogs | FAQ | Calendar | Search | Today's Posts | Mark Forums Read | Free Directory | Free DNSReport | Tags |
| Notices |
| Advisories Discuss about all newly security flaws classed by CVE entries and reviewed by security experts |
CVE-2008-1414 (Multiple Time Sheets)This is a discussion on "CVE-2008-1414 (Multiple Time Sheets)" within the Advisories part of the Computer Security: Discussions section; Cross-site scripting (XSS) vulnerability in Multiple Time Sheets (MTS) 5.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the tab parameter to (1) index.php, as demonstrated using mixed case and encoded whitespace ... |
 |
| | LinkBack | Thread Tools | Display Modes |
20-03-08
| |||
| |||
 CVE-2008-1414 (Multiple Time Sheets) Cross-site scripting (XSS) vulnerability in Multiple Time Sheets (MTS) 5.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the tab parameter to (1) index.php, as demonstrated using mixed case and encoded whitespace characters in the tag; or (2) clientinfo.php, (3) invoices.php, (4) smartlinks.php, and (5) todo.php, as demonstrated using a META tag. More...  |
| Sponsor | ||
| ||
| |
|
« CVE-2008-1397 (VPN-1 Power_UTM with NGX, Check Point VPN-1 Pro, VPN-1 Firewall-1)
|
CVE-2008-1432 (SupportCenter Plus) »
| Thread Tools | |
| Display Modes | |
Linear Mode
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Telephone Directory 2008 (SQL/XSS) Multiple Remote Vulnerabilities | Heap | Public | 0 | 09-06-08 19:58 |
| CVE-2008-1415 (Multiple Time Sheets) | Heap | Advisories | 0 | 20-03-08 21:30 |
