CVE-2013-7277 in Aphpkbinformación

Resumen

por MITRE

Multiple cross-site scripting (XSS) vulnerabilities in Andy s PHP Knowledgebase (Aphpkb) before 0.95.8 allow remote attackers to inject arbitrary web script or HTML via the (1) HTTP Referer header to saa.php, (2) username parameter to login.php, or (3) keyword_list parameter to keysearch.php.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservar

2014-01-08

Divulgación

2014-01-08

Moderación

aceptado

Artículo

VDB-66009

CPE

listo

EPSS

0.01655

KEV

no

Actividades

muy bajo

Fuentes

Interested in the pricing of exploits?

See the underground prices here!