9 lines
No EOL
546 B
Text
9 lines
No EOL
546 B
Text
source: https://www.securityfocus.com/bid/13803/info
|
|
|
|
NPDS is affected by multiple vulnerabilities resulting from input validation errors. These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL injection attacks.
|
|
|
|
This may result in the theft of authentication credentials, destruction or disclosure of sensitive data, and potentially other attacks.
|
|
|
|
All versions of NPDS are considered vulnerable to this issue at the moment.
|
|
|
|
http://www.example.com/npds/sdv_infos.php?sitename=<script>alert()</script> |