Cross-site scripting (XSS) vulnerability in index.php in NewsPHP allows remote malicious users to inject arbitrary web script or HTML via the cat_id parameter. NOTE: this issue might overlap vector 3 in CVE-2006-3358.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
newsphp newsphp |