Drupal Ubercart Module Orders Cross Site Scripting Vulnerabilities

Drupal Ubercart Module Orders Cross Site Scripting Vulnerabilities

Rated as : Low Risk Remotely Exploitable : YesLocally Exploitable : YesRelease Date : 2008-04-03

Multiple vulnerabilities have been identified in Ubercart (module for Drupal), which could be exploited by attackers to execute arbitrary scripting code. These issues are caused by input validation errors when displaying orders on administrative pages, which could be exploited by attackers to cause arbitrary scripting code to be executed by the user"s browser in the security context of an affected Web site.CreditsVulnerabilities reported by chadcrew.

Döküman Arama

Başlık :

Kapat