CVE-2008-0334 Information

Description

Cross-site scripting (XSS) vulnerability in pm/language/spanish/preferences.php in PMachine Pro 2.4.1 allows remote attackers to inject arbitrary web script or HTML via the L_PREF_NAME[855] parameter.

Reference

http://packetstormsecurity.org/0801-exploits/pMachinePro-241-xss.txt http://www.securityfocus.com/bid/27282