Multiple cross-site scripting (XSS) vulnerabilities in Dokeos before 1.6.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References
Link | Resource |
---|---|
http://www.dokeos.com/news.php#145 | |
http://www.securityfocus.com/bid/19210 | Patch |
http://secunia.com/advisories/21239 | Vendor Advisory |
http://www.osvdb.org/27586 |
Configurations
Information
Published : 2006-07-28 16:04
Updated : 2008-09-05 14:08
NVD link : CVE-2006-3924
Mitre link : CVE-2006-3924
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
dokeos
- dokeos