Posted by Egidio Romano on Nov 04

————————————————————————–
ATutor <= 2.2 (popuphelp.php) Reflected Cross-Site Scripting Vulnerability
————————————————————————–

[-] Software Link:

http://www.atutor.ca/

[-] Affected Versions:

Version 2.2 and prior versions.

[-] Vulnerability Description:

The vulnerable code is located in the /popuphelp.php script:

26. if…