mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-27 00:50:19 +01:00
780 B
780 B
CVE-2015-7708
Description
Cross-site scripting (XSS) vulnerability in 4images 1.7.11 and earlier allows remote attackers to inject arbitrary web script or HTML via the cat_description parameter in an updatecat action to admin/categories.php.
POC
Reference
- http://packetstormsecurity.com/files/133712/4images-1.7.11-Cross-Site-Scripting.html
- http://seclists.org/fulldisclosure/2015/Sep/95
Github
No PoCs found on GitHub currently.