Cross-site scripting (XSS) vulnerability in search.php in miniPortail 2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified argument, probably the search string.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2009-02-19 15:30
Updated : 2024-02-28 11:21
NVD link : CVE-2008-6168
Mitre link : CVE-2008-6168
CVE.ORG link : CVE-2008-6168
JSON object : View
Products Affected
miniportail
- miniportail
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')