Alstrasoft » E-friends : Security Vulnerabilities, CVEs, Published In 2006 (XSS)
Multiple cross-site scripting (XSS) vulnerabilities in index.php in AlstraSoft E-Friends allow remote attackers to inject arbitrary web script or HTML by (1) posting a blog, (2) posting a listing, (3) posting an event, (4) adding comments, or (5) sending a message.
Max CVSS
4.3
EPSS Score
0.59%
Published
2006-05-24
Updated
2018-10-18
1 vulnerabilities found