Cross-site scripting (XSS) vulnerability in RestoreFile.pm in BackupPC 3.1.0, 3.2.1, and possibly other earlier versions allows remote malicious users to inject arbitrary web script or HTML via the share parameter in a RestoreFile action to index.cgi.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
craig barratt backuppc 3.1.0 |
||
craig barratt backuppc 3.2.1 |