Arbitrary Script Injection via Style Attribute in PHP(Reactor) 1.2.7 pl1

Arbitrary Script Injection via Style Attribute in PHP(Reactor) 1.2.7 pl1

CVE-2002-2424 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in PHP(Reactor) 1.2.7 pl1 allows remote attackers to inject arbitrary web script or HTML via Javascript in the style attribute of an HTML tag.

Learn more about our Web App Pen Testing.