NetArt Media Car Portal Arbitrary File Upload and HTML Injection Vulnerabilities

NetArt Media Car Portal is prone to an arbitrary-file-upload vulnerability and multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input.

An attacker could exploit these vulnerabilities to execute arbitrary script code in a user's browser in the context of the affected site or execute arbitrary code on the server.

NetArt Media Car Portal 3.0 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus