Cross-site scripting (XSS) vulnerability in archive.php in Simplog 0.9.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the keyw parameter when performing a search. NOTE: some details are obtained from third party information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
simplog simplog |