Cross-site scripting (XSS) vulnerability in pm/language/spanish/preferences.php in PMachine Pro 2.4.1 allows remote attackers to inject arbitrary web script or HTML via the L_PREF_NAME[855] parameter.
Software | From | Fixed in |
---|---|---|
pmachine / pmachine_pro | 2.4.1 | 2.4.1.x |