Cross-site scripting (XSS) vulnerability in login/default.aspx in Sitecore CMS prior to 6.0.2 Update-1 090507 allows remote malicious users to inject arbitrary web script or HTML via the sc_error parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sitecore cms 5.3.0 |
||
sitecore cms 5.3.1 |
||
sitecore cms 6.0.1 |
||
sitecore cms |