Crystal Reports Input Validation Flaw in ‘pubDBLogon.jsp’ Permits Cross-Site Scripting Attacks

A vulnerability was reported in Crystal Reports. A remote user can conduct cross-site scripting attacks.

The software does not properly filter HTML code from user-supplied input before displaying the input. A remote user can cause arbitrary scripting code to be executed by the target user’s browser. Read More

This entry was posted in News. Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *