Vulnerability CVE-2013-5212


Published: 2020-02-14   Modified: 2020-02-13

Description:
Cross-site Scripting (XSS) in EasyXDM before 2.4.18 allows remote attackers to inject arbitrary web script or html via the easyxdm.swf file.

See advisories in our WLB2 database:
Topic
Author
Date
Low
easyXDM 2.4.16 Cross Site Scripting
Krzysztof Kotowi...
25.10.2013

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
http://seclists.org/fulldisclosure/2013/Oct/224
https://exchange.xforce.ibmcloud.com/vulnerabilities/88293

Copyright 2020, cxsecurity.com

 

Back to Top