VULHUB ™

VideoDB version 2.0.0 and earlier are reportedly affected by an unspecified HTML injection vulnerability. This is due to the application failing to properly sanitize user-supplied input prior to including it in dynamically generated content. The attacker-supplied HTML and script code would be able to access properties of the site, potentially allowing for theft of cookie-based authentication credentials. An attacker could also exploit this issue to control how the site is rendered to the user, other attacks are also possible.

VideoDB version 2.0.0 and earlier are reportedly affected by an unspecified HTML injection vulnerability. This is due to the application failing to properly sanitize user-supplied input prior to including it in dynamically generated content. The attacker-supplied HTML and script code would be able to access properties of the site, potentially allowing for theft of cookie-based authentication credentials. An attacker could also exploit this issue to control how the site is rendered to the user, other attacks are also possible.