Multiple cross-site scripting (XSS) vulnerabilities in YourFreeWorld Programs Rating Script allow remote malicious users to inject arbitrary web script or HTML via the id parameter to (1) rate.php and (2) postcomments.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
yourfreeworld programs rating script |