Multiple cross-site scripting (XSS) vulnerabilities in IDMOS 1.0-beta (aka Phoenix) allow remote malicious users to inject arbitrary web script or HTML via the (1) err_msg parameter to error.php and the (2) content parameter to templates/simple/ia.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
idmos idmos 1.0-beta |