QwikSec

Security Database

CVE

CWE

Training

CVE-2013-6224

Published: Dec 10, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in LiveZilla before 5.1.1.0 allow remote attackers to inject arbitrary web script or HTML via (1) a name in the call administrator feature, (2) unspecified vectors to the admins visitor information panel, or (3) a text message in a chat session, which is saved in the archive section.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_OSVDB

http://www.livezilla.net/board/index.php?/topic/163-livezilla-changelog/

x_refsource_MISC

https://cureblog.de/2013/12/cve-2013-6224-cross-site-scripting-in-livezilla

x_refsource_MISC

vdb-entry

x_refsource_OSVDB

livezilla-cve20136224-xss(89315)

vdb-entry

x_refsource_XF

20131128 CVE-2013-6224: XSS in Livezilla prior version 5.1.1.0

mailing-list

x_refsource_FULLDISC

vdb-entry

x_refsource_OSVDB

http://packetstormsecurity.com/files/124222

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.