Multiple cross-site scripting (XSS) vulnerabilities in (1) comersus_supportError.asp or (2) comersus_backofficelite_supportError.asp in BackOffice Lite 6.0 and 6.01 allow remote malicious users to inject arbitrary web script or HTML via the error parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
comersus open technologies comersus backoffice lite 6.0 |
||
comersus open technologies comersus backoffice lite 6.1 |