XSS vulnerability in CruxCMS

Vulnerability ID: HTB22445 Reference: http://www.htbridge.ch/advisory/xss_vulnerability_in_cruxcms.html Product: CruxCMS Vendor: CruxSoftware Vulnerable Version: 3.00 and Probably Prior Versions Vendor Notification: 21 June 2010 Vulnerability Type: XSS (Cross Site Scripting) Status: Not Fixed, Ven

XSS vulnerability in CruxCMS

Vulnerability ID: HTB22446 Reference: http://www.htbridge.ch/advisory/xss_vulnerability_in_cruxcms_1.html Product: CruxCMS Vendor: CruxSoftware Vulnerable Version: 3.00 and Probably Prior Versions Vendor Notification: 21 June 2010 Vulnerability Type: XSS (Cross Site Scripting) Status: Not Fixed, V

Re: XSS vulnerability in CruxCMS

: Vulnerability ID: HTB22445 : Reference: http://www.htbridge.ch/advisory/xss_vulnerability_in_cruxcms.html : Product: CruxCMS : Vendor: CruxSoftware : Vulnerable Version: 3.00 and Probably Prior Versions : Risk level: Medium : Credit: High-Tech Bridge SA - Ethical Hacking & Penetration Testing