Multiple cross-site scripting (XSS) vulnerabilities in sample.php in WiKID wClient-PHP 3.0-2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the PHP_SELF variable.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wikidsystems wclient-php |
||
wikidsystems wclient-php 3.0-1 |