Interspire Email Marketer 6.1.5 Cross Site Scripting

Interspire Email Marketer 6.1.5 Cross Site Scripting

# Affected software: interspire email marketer
# Type of vulnerability:flash xss
# URL: http://emailmarketer.interspire-demo.com/
# Discovered by: provensec
# Website: provensec.com

#version: Interspire Email Marketer 6.1.5
<http://www.interspire.com/emailmarketer/>
# Proof of concept

http://emailmarketer.interspire-demo.com/admin/functions/amcharts/a…

Best Regards,
Ankit Bharathan /*Security Researcher*
[image: Provensec,llc] <http://provenec.com/>

ankit.b@provensec.com

Provensec,llc
http://provenec.com

P *Consider the environment. Please don't print this e-mail unless
absolutely necessary.*