LMS Druk.PHP Cross Site Scripting Vulnerability

LMS Druk.PHP Cross Site Scripting Vulnerability

LMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.

Exploiting this issue could allow an attacker to steal cookie-based authentication credentials and to launch other attacks.

This issue affects versions prior to 1.6.9.