Cross site scripting

2006-03-2820:02:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

79.5%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in phpCOIN 1.2.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the fs parameter to (1) mod.php or (2) mod_print.php.

CPENameOperatorVersion
phpcoineq1.1.0
phpcoineq1.2.2
phpcoineq1.2.1
phpcoineq1.1.1
phpcoineq1.2.0

Name	Operator	Version
phpcoin	eq	1.1.0
phpcoin	eq	1.2.2
phpcoin	eq	1.2.1
phpcoin	eq	1.1.1
phpcoin	eq	1.2.0

References

secunia.com/advisories/19419

www.osvdb.org/24188

www.osvdb.org/24189

www.securityfocus.com/bid/17279

www.vupen.com/english/advisories/2006/1129

exchange.xforce.ibmcloud.com/vulnerabilities/25492

pridels0.blogspot.com/2006/03/phpcoin-v122-xss-vuln.html