Vulnerabilities > Alstrasoft > SMS Text Messaging Enterprise > Medium

DATE CVE VULNERABILITY TITLE RISK
2007-07-30 CVE-2007-4079 Cross-Site Scripting vulnerability in AlstraSoft SMS Text Messaging Enterprise
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft SMS Text Messaging Enterprise allow remote attackers to inject arbitrary web script or HTML via the (1) domain or (2) q parameter to (a) admin/membersearch.php, or (3) the userid parameter to (b) admin/edituser.php.
network
alstrasoft
4.3