Cross-site scripting (XSS) vulnerability in the Hosting Control Panel (psoft.hsphere.CP) in Positive Software H-Sphere 2.4.3 Patch 8 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the login parameter in a login action.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
positive software h-sphere 2.4.1_patch_1 |
||
positive software h-sphere 2.4.1_patch_2 |
||
positive software h-sphere 2.4.1_patch_3 |
||
positive software h-sphere 2.4.2_beta_2 |
||
positive software h-sphere 2.4.1 |
||
positive software h-sphere 2.4.2 |
||
positive software h-sphere 2.4.2_beta_1 |
||
positive software h-sphere 2.4.2_patch_5 |
||
positive software h-sphere 2.4.2_rc1 |
||
positive software h-sphere 2.4.3_patch_3 |
||
positive software h-sphere 2.4.3_patch_4 |
||
positive software h-sphere 2.4.3_patch_5 |
||
positive software h-sphere 2.4.1_patch_6 |
||
positive software h-sphere 2.4.1_patch_7 |
||
positive software h-sphere 2.4.2_patch_3 |
||
positive software h-sphere 2.4.2_patch_4 |
||
positive software h-sphere 2.4.3_patch_1 |
||
positive software h-sphere 2.4.3_patch_2 |
||
positive software h-sphere 2.4.3_rc2 |
||
positive software h-sphere 2.4.2_beta_3 |
||
positive software h-sphere 2.4.2_rc2 |
||
positive software h-sphere 2.4.3 |
||
positive software h-sphere 2.4.3_patch_6 |
||
positive software h-sphere 2.4.3_patch_7 |
||
positive software h-sphere 2.4.1_patch_4 |
||
positive software h-sphere 2.4.1_patch_5 |
||
positive software h-sphere 2.4.2_patch_1 |
||
positive software h-sphere 2.4.2_patch_2 |
||
positive software h-sphere 2.4.3_beta_1 |
||
positive software h-sphere 2.4.3_beta_2 |
||
positive software h-sphere 2.4.3_patch_8 |
||
positive software h-sphere 2.4.3_rc1 |
Vulmon