Cross-site scripting (XSS) vulnerability in core.input.php in ExpressionEngine 1.4.1 allows remote attackers to inject arbitrary web script or HTML via HTTP_REFERER (referer).
References
Configurations
History
No history.
Information
Published : 2006-01-27 23:03
Updated : 2024-02-04 16:52
NVD link : CVE-2006-0461
Mitre link : CVE-2006-0461
CVE.ORG link : CVE-2006-0461
JSON object : View
Products Affected
pmachine
- expressionengine
CWE