CVE-2012-1115

Summary

A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the export, add_value_form, and dn parameters to cmd.php.

Affected Software

VendorProductVersion RangeStatus
ldap-account-managerLDAP Account Manager (LAM) Pro3.6affected

Weaknesses

  • XSS flaws via 'export', 'add_value_form' and 'dn' variables

ADP Enrichment

CVE Program Container

Additional References

References