Multiple cross-site scripting (XSS) vulnerabilities in sample.php in WiKID wClient-PHP 3.0-2 and earlier allow remote attackers to inject arbitrary web script or HTML via the PHP_SELF variable.
Software | From | Fixed in |
---|---|---|
wikidsystems / wclient-php | - | 3.0-2.x |
wikidsystems / wclient-php | 3.0-1 | 3.0-1.x |