Cross-site scripting (XSS) vulnerability in index.php in toendaCMS before 0.7 Beta allows remote attackers to inject arbitrary web script or HTML via the id parameter.
Software | From | Fixed in |
---|---|---|
toenda_software_development / toendacms | - | 0.6.x |
toenda_software_development / toendacms | 0.6_beta_1 | 0.6_beta_1.x |
toenda_software_development / toendacms | 0.6_beta_2 | 0.6_beta_2.x |
toenda_software_development / toendacms | 0.6_beta_3 | 0.6_beta_3.x |
toenda_software_development / toendacms | 0.6_pre-beta | 0.6_pre-beta.x |