MidnightBSD

Advisories for digitalworkroom

CVE-2010-3489 MEDIUM

Cross-site scripting (XSS) vulnerability in netautor/napro4/home/login2.php in CMS Digital Workroom (formerly Netautor Professional) 5.5.0 allows remote attackers to inject arbitrary web script or HTML via the goback parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
digitalworkroom cms_digital_workroom 5.3.1
digitalworkroom cms_digital_workroom 5.5.0