** DISPUTED ** MySource Matrix after 3.8 allows remote attackers to use the application as an HTTP proxy server via a MIME encoded URL in the sq_content_src parameter to access arbitrary sites with the server's IP address and conduct cross-site scripting (XSS) attacks. NOTE: the researcher reports that "The vendor does not consider this a vulnerability."
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2006-09-27 23:07
Updated : 2024-08-07 20:15
NVD link : CVE-2006-5037
Mitre link : CVE-2006-5037
CVE.ORG link : CVE-2006-5037
JSON object : View
Products Affected
squiz
- mysource_matrix
CWE