icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

ht://Dig config Parameter XSS

Medium

Synopsis

The remote version of htsearch appears to be vulnerable to a remote Cross-Site Scripting (XSS) attack.

Description

The remote version of htsearch appears to be vulnerable to a remote Cross-Site Scripting (XSS) attack. An attacker exploiting this flaw would need to be able to entice a user into clicking on a malicious URL that would contain embedded script code designed to exploit trust and execute within the client browser.

Solution

Upgrade or patch according to vendor recommendations.