Multiple cross-site scripting (XSS) vulnerabilities in ADOdb 4.71, as used in multiple packages such as phpESP, allow remote malicious users to inject arbitrary web script or HTML via (1) the next_page parameter in adodb-pager.inc.php and (2) other unspecified vectors related to PHP_SELF.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
john lim adodb 4.66 |
||
john lim adodb 4.71 |
||
john lim adodb 4.68 |
||
john lim adodb 4.70 |