Greg Neustaetter : Security Vulnerabilities, CVEs, Published In 2006 (XSS)
Cross-site scripting (XSS) vulnerability in index.php in Greg Neustaetter gCards 1.45 and earlier allows remote attackers to inject arbitrary web script or HTML via the lang[*][file] parameter, which is injected into an error message. NOTE: this issue might be resultant from CVE-2006-1346.
Max CVSS
4.3
EPSS Score
1.02%
Published
2006-03-22
Updated
2017-10-11
1 vulnerabilities found