Multiple cross-site scripting (XSS) vulnerabilities in pagenumber.inc.php in phpPowerCards 2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) PATH_INFO, the (2) archiv parameter, and the (3) subcat parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
giombetti phppowercards 2.0 |