CVE-2006-3397

CVE-2006-3397

EPSS 1.3%

Multiple cross-site scripting (XSS) vulnerabilities in Taskjitsu before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters, including the (1) title and (2) description parameters when creating a task.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://secunia.com/advisories/20912 https://exchange.xforce.ibmcloud.com/vulnerabilities/27533 https://www.pkrinternet.com/taskjitsu/task/3313 http://www.pkrinternet.com/download/RELEASE-NOTES.txt http://www.securityfocus.com/bid/18818 http://www.vupen.com/english/advisories/2006/2660