MidnightBSD

Advisories for kelvin_mo

CVE-2009-4972 MEDIUM

Cross-site scripting (XSS) vulnerability in index.php (aka the log in page) in SimpleID before 0.6.5 allows remote attackers to inject arbitrary web script or HTML via the s parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
kelvin_mo simpleid 0.6.2
kelvin_mo simpleid *
kelvin_mo simpleid 0.6.1
kelvin_mo simpleid 0.6.3