CVE-2010-0706
Subex Nikira Fraud Management System - Cross-Site Scripting via Login Prompt Message Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2010-0706. PoCs published by thebluegenius.
AI-analyzed exploit summary The exploit describes a reflected XSS vulnerability in Subex Nikira Fraud Management System GUI due to improper input sanitization. The provided URL demonstrates the issue by injecting a script tag that triggers an alert.
Description
Cross-site scripting (XSS) vulnerability in the login/prompt component in Subex Nikira Fraud Management System allows remote attackers to inject arbitrary web script or HTML via the message parameter.
Exploits (1)
The exploit describes a reflected XSS vulnerability in Subex Nikira Fraud Management System GUI due to improper input sanitization. The provided URL demonstrates the issue by injecting a script tag that triggers an alert.