CVE-2010-1111 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in Jokes Complete Website allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to joke.php and the (2) searchingred parameter to results.php.

Reference

http://www.packetstormsecurity.com/1001-exploits/jokescomplete-xss.txt http://www.securityfocus.com/bid/37852 https://exchange.xforce.ibmcloud.com/vulnerabilities/55761