Multiple cross-site scripting (XSS) vulnerabilities in DataCheck Solutions SitePal 1.x allow remote attackers to inject arbitrary web script or HTML via the page parameter to (1) z_admin_login.asp, (2) z_forgot.asp, and possibly unspecified other components. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://secunia.com/advisories/35625 |
![]() ![]() |
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2009-07-27T18:00:00Z
Updated: 2024-09-16T23:15:42.204Z
Reserved: 2009-07-27T00:00:00Z
Link: CVE-2009-2615

No data.

Status : Deferred
Published: 2009-07-27T18:30:00.390
Modified: 2025-04-09T00:30:58.490
Link: CVE-2009-2615

No data.