Cross site scripting

2007-05-2221:30:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.3%

JSON

Cross-site scripting (XSS) vulnerability in cand_login.asp in CactuSoft Parodia 6.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the strJobIDs parameter.

CPENameOperatorVersion
parodiale6.4

CPE	Name	Operator	Version
	parodia	le	6.4

References

osvdb.org/37523

www.securityfocus.com/bid/24078

exchange.xforce.ibmcloud.com/vulnerabilities/34388

pridels-team.blogspot.com/2007/05/parodia-xss-vuln.html