Multiple cross-site scripting (XSS) vulnerabilities in EditTag 1.2 allow remote malicious users to inject arbitrary web script or HTML via the plain parameter to (1) mkpw_mp.cgi, (2) mkpw.pl, or (3) mkpw.cgi.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
edittag edittag 1.2 |