Cross-site scripting (XSS) vulnerability in auth.php in Pineapple Technologies QuizShock 1.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via encoded special characters in the forward_to parameter, as demonstrated using "<"<".
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2007-04-10T23:00:00
Updated: 2024-08-07T13:13:41.891Z
Reserved: 2007-04-10T00:00:00
Link: CVE-2007-1905

No data.

Status : Modified
Published: 2007-04-10T23:19:00.000
Modified: 2024-11-21T00:29:25.980
Link: CVE-2007-1905

No data.