TestLink Security Advisory – Multiple XSS Vulnerabilities – CVE-2015-7391

Posted by Onur Yilmaz on Oct 08

Information
——————–
Advisory by Netsparker.
Name: Multiple XSS Vulnerabilities in TestLink 1.9.13
Affected Software : TestLink
Affected Versions: 1.9.1.3 and possibly below
Vendor Homepage : http://testlink.org/
Vulnerability Type : Cross-site Scripting
Severity : Important
Status : Fixed
CVE-ID : CVE-2015-7391
Netsparker Advisory Reference : NS-15-016

Description
——————–
By exploiting a Cross-site scripting…

Leave a Reply