CVE-2014-7264 in Chyrpजानकारी

सारांश

द्वारा MITRE

Multiple cross-site scripting (XSS) vulnerabilities in admin/themes/default/pages/manage_users.twig in the Users Management feature in the admin component in Chyrp before 2.5.1 allow remote authenticated users to inject arbitrary web script or HTML via the (1) user.email or (2) user.website field in a user registration.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

आरक्षित करना

30/09/2014

प्रकटीकरण

11/12/2014

प्रविष्टि

VDB-73207

EPSS

0.01417

गतिविधियाँ

बहुत कम

स्रोत

Do you want to use VulDB in your project?

Use the official API to access entries easily!