VULHUB ™

It has been reported that PHPCodeCabinet may be prone to a HTML injection vulnerability that may allow a remote attacker to execute HTML and script code in a user's browser. The problem is reported to exist due to improper sanitizing of user-supplied data via the 'sid' parameter of 'comments.php' script. PHPCodeCabinet versions 0.4 and prior have been reported to be vulnerable to this issue.

It has been reported that PHPCodeCabinet may be prone to a HTML injection vulnerability that may allow a remote attacker to execute HTML and script code in a user's browser. The problem is reported to exist due to improper sanitizing of user-supplied data via the 'sid' parameter of 'comments.php' script. PHPCodeCabinet versions 0.4 and prior have been reported to be vulnerable to this issue.