CVE-2015-2064 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in DLGuard 5 4.6 and 4.5 allow remote attackers to inject arbitrary web script or HTML via the (1) page (2) c or (3) redirect parameter to index.php or (4) search field (searchTerm parameter) in the main page.

Reference

http://seclists.org/fulldisclosure/2015/Feb/66 http://securityrelated.blogspot.com/2015/02/dlguard-multiple-xss-cross-site.html http://tetraph.com/security/xss-vulnerability/dlguard-multiple-xss-cross-site-scripting-security-vulnerabilities/ http://www.securityfocus.com/bid/72684