MidnightBSD

Advisories for pu-gh

CVE-2012-4267 MEDIUM

Cross-site scripting (XSS) vulnerability in user/register in Sockso 1.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the name parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
pu-gh sockso 1.2.2
pu-gh sockso 1.2.3
pu-gh sockso 1.1.3
pu-gh sockso 1.1.5
pu-gh sockso 1.2.4
pu-gh sockso 1.3.2
pu-gh sockso 1.1.2
pu-gh sockso 1.1.7
pu-gh sockso 1.2.7
pu-gh sockso 1.4.2
pu-gh sockso 1.1.1
pu-gh sockso 1.3.4
pu-gh sockso 1.3.3
pu-gh sockso 1.2.5
pu-gh sockso 1.3.5
pu-gh sockso *
pu-gh sockso 1.4
pu-gh sockso 1.1.6
pu-gh sockso 1.2.1
pu-gh sockso 1.1
pu-gh sockso 1.2.6
pu-gh sockso 1.4.1
pu-gh sockso 1.2
pu-gh sockso 1.1.4
pu-gh sockso 1.1.8
pu-gh sockso 1.3.1
pu-gh sockso 1.3