Summary
This host is running SGX-SP Final and is prone to multiple cross site scripting vulnerabilities.
Impact
Successful exploitation could allow remote attackers to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
Impact Level: Application
Solution
Upgrade to SGX-SP Final version 11.0 or later,
For updates refer to http://wb-i.net/
Insight
The flaws are caused by improper validation of user-supplied input passed to shop.cgi, which allows attackers to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
Affected
SGX-SP Final version 10.0 and prior.
References
Severity
Classification
-
CVE CVE-2010-3926 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities