CVE-2008-2187

Name of the Vulnerable Software and Affected Versions Mjguest version 6.7 GT Rev.01

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the level parameter in a redirect action, possibly involving the "interface/redirect.htm.php" endpoint.

Recommendations For Mjguest version 6.7 GT Rev.01, consider restricting access to the level parameter in the redirect action to minimize the risk of exploitation. As a temporary workaround, avoid using the level parameter in the affected redirect action until the issue is resolved.