Pinnacle Systems: Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in SettingsBase.php in Pinnacle ShowCenter 1.51 build 121 allows remote attackers to inject arbitrary HTML or web script via the Skin parameter, which is echoed in an error message.
CVSS Score
4.3
EPSS Score
0.004
Published
2004-10-14
SettingsBase.php in Pinnacle ShowCenter 1.51 allows remote attackers to cause a denial of service (web interface errors) via an invalid Skin parameter.
CVSS Score
5.0
EPSS Score
0.097
Published
2004-09-21