Multiple Cross-Site Scripting (XSS) Vulnerabilities in SitePanel 2.6.1 and Earlier

Multiple Cross-Site Scripting (XSS) Vulnerabilities in SitePanel 2.6.1 and Earlier

CVE-2005-1444 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Multiple cross-site scripting (XSS) vulnerabilities in SitePanel 2.6.1 and earlier (SitePanel2) allows remote attackers to inject arbitrary web script or HTML via (1) the v, show, or sec_name parameters to main.php, (2) the inadmin, newsev, or postid parameters to 5.php, or (3) the id parameter to 0.php.

Learn more about our Web App Pen Testing.