Cross-site scripting (XSS) vulnerability in Scoop 1.1 RC1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) type and (2) count parameters, and (3) the query string in a story.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
scoop scoop |