PHPkrm Unspecified Cross Site Scripting Vulnerability

info
discussion
exploit
solution
references

PHPkrm Unspecified Cross Site Scripting Vulnerability

PHPkrm is prone to an unspecified cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied data.

Exploiting this issue may help an attacker steal cookie-based authentication credentials and launch other attacks.

PHPkrm 1.4.2 is vulnerable to this issue; other versions may also be affected.