Cross-Site Scripting Flaw in Fujitsu-Siemens WebTransactions

CVE-2008-5842

Summary

Multiple cross-site scripting (XSS) vulnerabilities exist in Fujitsu-Siemens WebTransactions 7.0 and 7.1, which could enable remote attackers to inject arbitrary web scripts or HTML. These vulnerabilities may be exploited through vectors associated with a demo application provided with WebTransactions, as well as an unspecified dynamic application. Proper coding practices and input validation are essential to mitigate these vulnerabilities and ensure platform security.

References