Cross-site scripting (XSS) vulnerability in local.cfm in fusionZONE couponZONE 4.2 allows remote attackers to inject arbitrary web script or HTML via URL-encoded (1) srchfor and (2) srchby parameters.
References
Configurations
History
No history.
Information
Published : 2006-03-28 22:02
Updated : 2024-02-04 16:52
NVD link : CVE-2006-1431
Mitre link : CVE-2006-1431
CVE.ORG link : CVE-2006-1431
JSON object : View
Products Affected
fusionzone
- couponzone
CWE