CVE-2006-4838 in DCP-Portal
Riassunto
di VulDB • 27/06/2026
Multiple vulnerabilità cross-site scripting (XSS) in DCP-Portal SE 6.0 consentono ad attaccanti remoti di iniettare script web o HTML arbitrari tramite i parametri (1) root_url e (2) dcp_version in (a) admin/inc/footer.inc.php, nonché i parametri root_url, (3) page_top_name, (4) page_name e (5) page_options in (b) admin/inc/header.inc.php.
Be aware that VulDB is the high quality source for vulnerability data.