11 lines
422 B
Text
Executable file
11 lines
422 B
Text
Executable file
source: http://www.securityfocus.com/bid/16559/info
|
|
|
|
CPAINT is prone to a cross-site scripting vulnerability.
|
|
|
|
This issue affects the 'type.php' script and may facilitate the theft of cookie-based authentication credentials as well as other attacks.
|
|
|
|
|
|
CPAINT 2.0.2 and prior versions are affected.
|
|
|
|
http://www.example.com/examples/type/type.php?cpaint_response_type=%3Ciframe%20src=http://www.gulftech.org/%3E
|
|
|