9 lines
No EOL
565 B
Text
9 lines
No EOL
565 B
Text
source: https://www.securityfocus.com/bid/13803/info
|
|
|
|
NPDS is affected by multiple vulnerabilities resulting from input validation errors. These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL injection attacks.
|
|
|
|
This may result in the theft of authentication credentials, destruction or disclosure of sensitive data, and potentially other attacks.
|
|
|
|
All versions of NPDS are considered vulnerable to this issue at the moment.
|
|
|
|
http://www.example.com/reviews.php?op=postcomment&id=1&title=%3Cscript%3Ealert();%3C/script%3E |