Home Vendor Advisories Open Source Vul DB Rialto searchkey.asp Keyword Variable XSS

Wednesday, 03 December 2008

Main Menu Home About us Contact us Services Partners Downloads Online Services Remote Support Helpdesk Backup Reminders Partners We ensure the highest level of vendor support for our clients & have established alliances with the following vendors: Services Spotlight Voice over IP VoIP (Voice over IP) allows the integration of your data network and voice communication through a single medium, sending voice over your IP network (through LAN/WAN/Internet). Read more...   Login Username Password Remember me Lost Password? Tech Zone Vendor Advisories Cisco Microsoft Open Source Vul DB Products Industry News

Rialto searchkey.asp Keyword Variable XSS Sunday, 19 November 2006 Rialto contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'Keyword' variable upon submission to the 'searchkey.asp' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity. Read more...

This page was loaded in 0.052 seconds.