Intrusion Prevention

IdeoContent.Manager.XSS

Description

IdeoContent Manager has multiple across-site scripting (XSS) vulnerabilities. A remote attacker could execute arbitrary script code in a victim's web browser via specified scripts and parameters, even allowing the attacker to steal the victim's cookie-based authentication credentials.

Affected Products

IdeoContent Manager Any version.

Impact

Gain Access

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.
http://www.ideosoft.ro/

CVE References

CVE-2006-0463