VULHUB ™

RSMScript is prone to cookie authentication-bypass and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting the HTML-injection issue may allow an attacker to execute arbitrary HTML or script code in the context of the affected website. As a result, the attacker may be able to steal cookie-based authentication credentials and to launch other attacks. The attacker may exploit the cookie-authentication-bypass issue to gain unauthorized access to the application. RSMScript 1.21 is vulnerable; other versions may also be affected.

RSMScript is prone to cookie authentication-bypass and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting the HTML-injection issue may allow an attacker to execute arbitrary HTML or script code in the context of the affected website. As a result, the attacker may be able to steal cookie-based authentication credentials and to launch other attacks. The attacker may exploit the cookie-authentication-bypass issue to gain unauthorized access to the application. RSMScript 1.21 is vulnerable; other versions may also be affected.