• Skip to main content
  • Skip to footer

Audit My PC - Free Internet Security Audit

Firewall Test and web tools to check your security and privacy

  • Firewall Test
  • Anti Spam
  • Internet Speed Test
  • Sitemap Generator
  • Whats My IP

Scout Portal Toolkit SPT–Advanced.php Multiple Field XSS

Network Security News – Tuesday, December 13, 2005 Events

Scout Portal Toolkit SPT–Advanced.php Multiple Field XSS

Scout Portal Toolkit (SPT) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate multiple unspecified fields upon submission to the SPT–Advanced.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/21631

Scout Portal Toolkit SPT–AdvancedSearch.php Multiple Variable XSS

Scout Portal Toolkit (SPT) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'F_SearchCat1', 'F_TextField1', 'F_SearchCat2', 'F_TextField2', 'F_SearchCat3', 'F_TextField3', 'F_SearchCat4', 'F_TextField4', 'ResourceType', 'Language', 'Audience', or 'Format' variables upon submission to the SPT–AdvancedSearch.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/21635

Scout Portal Toolkit SPT–UserLogin.php Multiple Variable XSS

Scout Portal Toolkit (SPT) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'F_UserName' or 'F_Password' variables upon submission to the SPT–UserLogin.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/21634

Reader Interactions

Leave a Reply

Your email address will not be published. Required fields are marked *

Footer

Miscellaneous

  • Free Address Finder
  • HTML Encoder Decoder
  • Website Monitoring
  • Whats My IP Address?
  • Yes or No

Copyright © 2001-2021 Audit My PC .com All Rights Reserved. Our Privacy Policy and TOS

  • About
  • Acronyms
  • DLL Files
  • Ports
  • Computer Security News
  • Email Scams & Spam
  • Internet Safety
  • Free Software