CVE-2003-1549 Information

Description

Cross-site scripting (XSS) vulnerability in header.php in MyABraCaDaWeb 1.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the ma_kw parameter.

Reference

http://secunia.com/advisories/8320 http://securityreason.com/securityalert/3717 http://www.security-corporation.com/download/patch/MyABraCaDaWebv1.0.2XSSpatch.zip http://www.securityfocus.com/archive/1/315317/30/25460/threaded http://www.securityfocus.com/bid/7127 http://www.securitytracker.com/id?1006308 http://www.webmaster-mag.net/?module=distridoc&idCat=3 https://exchange.xforce.ibmcloud.com/vulnerabilities/11557