mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-05 06:10:47 +00:00
732 B
732 B
CVE-2014-2861
Description
Incomplete blacklist vulnerability in PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted string, as demonstrated by bypassing a protection mechanism that removes only the "alert" string.
POC
Reference
Github
No PoCs found on GitHub currently.