Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Calvaweb Password only login password-only-login allows Reflected XSS.This issue affects Password only login: from n/a through <= 0.2.
Problem types
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Product status
Any version
Credits
Nguyen Xuan Chien (Patchstack Alliance)
References
vdp.patchstack.com/...cross-site-scripting-xss-vulnerability
