N/A

Multiple cross-site scripting (XSS) vulnerabilities in index.php in coolphp magazine allow remote attackers to inject arbitrary web script or HTML via the (1) op and (2) nick parameters, and possibly the (3) 0000, (4) userinfo, (5) comp_der, (6) encuestas, and (7) pagina parameters. NOTE: it is not clear whether this is a distributable product or a site-specific vulnerability. If it is site-specific, then it should not be included in CVE.

N/A

N/A

CoolPHP Index.PHP 跨站脚本攻击漏洞

coolphp magazine中的index.php存在多个跨站脚本攻击(XSS)漏洞，远程攻击者可通过(1)op和(2)nick参数以及可能的(3)0000，(4)userinfo，(5)comp_der，(6)encuestas和(7)pagina参数来注入任意Web脚本或HTML。

N/A

N/A