Multiple cross-site scripting (XSS) vulnerabilities in aMember allow remote malicious users to inject arbitrary web script or HTML via the (1) lamember_login parameter to sendpass.php and (2) login parameter to member.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
amember amember |