An issue exists in PONTON X/P Messenger prior to 3.11.2. Several functions are vulnerable to reflected XSS, as demonstrated by private/index.jsp?partners/ShowNonLocalPartners.do?localID= or private/index.jsp or private/index.jsp?database/databaseTab.jsp or private/index.jsp?activation/activationMainTab.jsp or private/index.jsp?communication/serverTab.jsp or private/index.jsp?emailNotification/notificationTab.jsp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ponton x\\/p messenger 3.8.0 |
||
ponton x\\/p messenger 3.10.0 |