Arbitrary Web Script Injection Vulnerability in SimpleGroupware 0.742 and Earlier Versions

Arbitrary Web Script Injection Vulnerability in SimpleGroupware 0.742 and Earlier Versions

CVE-2012-1028 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in bin/index.php in SimpleGroupware 0.742 and other versions before 0.743 allows remote attackers to inject arbitrary web script or HTML via the export parameter.

Learn more about our Web App Pen Testing.