CVE-2013-6808 in ZendTo
요약
\~에 의해 MITRE
Cross-site scripting (XSS) vulnerability in lib/NSSDropoff.php in ZendTo before 4.11-13 allows remote attackers to inject arbitrary web script or HTML via a modified emailAddr field to pickup.php.
Once again VulDB remains the best source for vulnerability data.