CVE-2013-7277 in Aphpkbinformation

Résumé

par MITRE

Multiple cross-site scripting (XSS) vulnerabilities in Andy s PHP Knowledgebase (Aphpkb) before 0.95.8 allow remote attackers to inject arbitrary web script or HTML via the (1) HTTP Referer header to saa.php, (2) username parameter to login.php, or (3) keyword_list parameter to keysearch.php.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Réserver

08/01/2014

Divulgation

08/01/2014

Modérer

accepté

Entrée

VDB-66009

CPE

prêt

EPSS

0.01655

KEV

non

Activités

très faible

Sources

Do you need the next level of professionalism?

Upgrade your account now!