Back to search
CVE-2013-5951
Published: Mar 25, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in eXtplorer 2.1.3, when used as a component for Joomla!, allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) application.js.php in scripts/ or (2) admin.php, (3) copy_move.php, (4) functions.php, (5) header.php, or (6) upload.php in include/.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20140315 [CVE-2013-5951] Multiple Cross Site Scripting Vulnerabilities in eXtplorer 2.1.3
mailing-list
x_refsource_FULLDISC
57387
third-party-advisory
x_refsource_SECUNIA
66262
vdb-entry
x_refsource_BID
DSA-2882
vendor-advisory
x_refsource_DEBIAN
57482
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now