CVE-2015-7708
4.3
Vector
AV:N/AC:M/Au:N/C:N/I:P/A:N
Exploitability: 8.6 / Impact: 2.9
Source: NVD
Description
Cross-site scripting (XSS) vulnerability in 4images 1.7.11 and earlier allows remote attackers to inject arbitrary web script or HTML via the cat_description parameter in an updatecat action to admin/categories.php.
Affected (1)
Products: 4homepages: 4images
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.7.11 |
References (4)
Source: cve@mitre.org
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Timeline
No history available yet.