Cross-site scripting (XSS) vulnerability in heading.php in Boesch ProgSys 0.151 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to admin/index.php, and unspecified vectors related to certain other files. NOTE: some of these details are obtained from third party information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
boesch it-consulting progsys |