Apache Roller 'q' Parameter Cross Site Scripting Vulnerability

Bugtraq ID: 33110
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Dec 17 2008 12:00AM
Updated: Jan 05 2009 09:22PM
Credit: Hector Manuel Escalona Mendoza
Vulnerable: Apache Software Foundation Apache Roller 4.0
Apache Software Foundation Apache Roller 3.1
Apache Software Foundation Apache Roller 3.0
Apache Software Foundation Apache Roller 2.3
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus