• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Webcheck Username HTML Injection Vulnerability


Webcheck is affected by an HTML-injection vulnerability. The application may collect data from possibly malicious websites and may generate reports containing this data.

An administrative user who views the vulnerable sections of the site would have the attacker-supplied HTML and script code executed in the context of the administrative user's browser application.

Webcheck versions prior to 1.9.6 are vulnerable.