|
Family: CGI abuses : XSS --> Category: infos
Pinnacle ShowCenter Skin XSS Vulnerability Scan
Vulnerability Scan Summary Checks skin XSS in Pinnacle ShowCenter
Detailed Explanation for this Vulnerability Test
The remote host runs the Pinnacle ShowCenter web based interface.
The remote version of this software is vulnerable to cross-site
scripting attack due to a lack of sanity checks on skin parameter
in the SettingsBase.php script.
With a specially crafted URL, a possible hacker can cause arbitrary
code execution resulting in a loss of integrity.
Solution: Upgrade to the newest version of this software.
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|