CVE-2012-1217 Information

Feb 14, 2021 cve

Description

Multiple cross-site scripting (XSS) vulnerabilities in STHS v2 Web Portal 2.2 allow remote attackers to inject arbitrary web script or HTML via the team parameter to (1) prospects.php (2) prospect.php or (3) team.php.

Reference

http://0nto.wordpress.com/2012/02/13/sths-v2-web-portal-2-2-sql-injection-vulnerabilty/ http://packetstormsecurity.org/files/109665/STHS-v2-Web-Portal-2.2-SQL-Injection.html http://www.securityfocus.com/bid/51991 https://exchange.xforce.ibmcloud.com/vulnerabilities/73154

Share on: