Cross-site scripting (XSS) vulnerability in auth.php in Pineapple Technologies QuizShock 1.6.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via encoded special characters in the forward_to parameter, as demonstrated using "<"<".
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pineapple technologies quizshock |