Cross-site scripting (XSS) vulnerability in the fom CGI program (fom.cgi) in Faq-O-Matic 2.711 and 2.712 allows remote malicious users to inject arbitrary web script or HTML via the file parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jon howell faq-o-matic 2.712 |
||
jon howell faq-o-matic 2.711 |