Seo.Panel.XSS.Vulnerability
Description
Seo Panel is an open source seo control panel used for managing search engine optimization on multiple websites.
Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel 2.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) default_news or (2) sponsors cookies, which are not properly handled by (a) controllers/index.ctrl.php or (b) controllers/settings.ctrl.php. (CVE-2010-4331)
Affected Products
Seo Panel 2.2.0
Impact
A successful attack could allow attackers to run arbitrary code.
Recommended Actions
Please update to the latest version. For more information, refer to the vendor's homepage: http://sourceforge.net/projects/seopanel .
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |