Multiple cross-site scripting (XSS) vulnerabilities in trixbox 2.4.2.0 allow remote malicious users to inject arbitrary web script or HTML via the query string to index.php in (1) user/ or (2) maint/.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
trixbox trixbox 2.4.2.0 |