Itechscripts : Security Vulnerabilities, CVEs, Published In 2012 (XSS)
Cross-site scripting (XSS) vulnerability in client_details.php in Proman Xpress 5.0.1 allows remote attackers to inject arbitrary web script or HTML via the cl_comments parameter. NOTE: some of these details are obtained from third party information.
Max CVSS
4.3
EPSS Score
0.16%
Published
2012-08-13
Updated
2012-08-14
Multiple cross-site scripting (XSS) vulnerabilities in Travelon Express 6.2.2 allow remote attackers to inject arbitrary web script or HTML via the holiday name field to (1) holiday_add.php or (2) holiday_view.php.
Max CVSS
4.3
EPSS Score
0.29%
Published
2012-05-27
Updated
2017-08-29
2 vulnerabilities found