CVE-2014-3877 in Ulli Horlacher fexinfo

Summary

Incomplete blacklist vulnerability in Frams Fast File EXchange (F*EX, aka fex) before fex-20140530 allows remote attackers to conduct cross-site scripting (XSS) attacks via the addto parameter to fup.

Reservation

05/27/2014

Disclosure

06/18/2014

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
70078Ulli Horlacher fex incomplete blacklist184Not definedOfficial fixCVE-2014-3877

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!