inurl:/dana-na/auth/welcome.html

GHDB-ID:

604

Author:

anonymous

Google Dork Description:

inurl:/dana-na/auth/welcome.html

Neoteris Instant Virtual Extranet (IVE) has been reported prone to a cross-site scripting vulnerability.The issue presents itself, due to a lack of sufficient sanitization performed on an argument passed to an IVE CGI script. An attacker may exploit this vulnerability to hijack valid Neoteris IVE sessions.advisories: http://secunia.com/product/1558/http://www.securityfocus.com/bid/7510