Cross-site scripting (XSS) vulnerability in image-editor-52/index.php in CityPost Simple Image-Editor 0.52 allows remote attackers to inject arbitrary web script or HTML via the (1) m1, (2) m2, (3) m3, (4) imgsrc, and (5) m4 parameter.
References
Configurations
History
21 Nov 2024, 00:04
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/15010 - Vendor Advisory | |
References | () http://securitytracker.com/id?1013751 - | |
References | () http://www.securityfocus.com/bid/13260 - Exploit | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/20161 - |
Information
Published : 2005-12-31 05:00
Updated : 2024-11-21 00:04
NVD link : CVE-2005-4672
Mitre link : CVE-2005-4672
CVE.ORG link : CVE-2005-4672
JSON object : View
Products Affected
citypost
- simple_image_editor
CWE