Google Search: inurl:/dana-na/auth/welcome.html
Counterhack rates this entry 2 out of 10.
Submitted: 2004-10-20 07:31:26
Added by: Counterhack
Neoteris Instant Virtual Extranet (IVE) has been reported prone to a cross-site scripting vulnerability.The issue presents itself, due to a lack of sufficient sanitization performed on an argument passed to an IVE CGI script. An attacker may exploit this vulnerability to hijack valid Neoteris IVE sessions.advisories: http://secunia.com/product/1558/http://www.securityfocus.com/bid/7510