CVE-2010-5030

Name of the Vulnerable Software and Affected Versions Ecomat CMS version 5.0

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the lang parameter in a web action.

Recommendations For Ecomat CMS version 5.0, avoid using the lang parameter in web actions until a fix is available. As a temporary workaround, consider restricting access to the index.php file to minimize the risk of exploitation.