|
Description
|
|
Two vulnerabilities have been identified in NetworX, which could be exploited by attackers to compromise a vulnerable system.
The first issue is caused by an input validation error in the "group_connections_list_popup.php" script when processing the "group_id" parameter, which could be exploited by attackers to cause arbitrary scripting code to be executed by the user's browser in the security context of an affected site.
The second vulnerability is caused by an error in the "upload.php" script when handling the "logout" parameter, which could be exploited by malicious users to upload malicious PHP scripts and execute arbitrary commands with the privileges of the web server.
|
