Multiple cross-site scripting (XSS) vulnerabilities in index.php in ViHor Design allow remote malicious users to inject arbitrary web script or HTML via (1) a remote URL in the page parameter, which is processed by an fopen call, or (2) HTML or script in the page parameter, which is returned to the client in an error message for the failed fopen call.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vihor vihordesign |