|
Plans Display Type Variable Cross-Site Scripting Vulnerability
A cross-site scripting vulnerability exists in Plans. An attacker may execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. Successful exploitation could result in theft of cookie-based authentication credentials as well as other attacks. This issue is reported to affect Plans version 6.7.1; previous versions may also be affected. |
|
|
Privacy Statement |
