Cross-site scripting (XSS) vulnerability in EasyCTF before 1.4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
References
Link | Resource |
---|---|
http://jvn.jp/en/jp/JVN07538357/995657/index.html | |
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000061 | Vendor Advisory |
http://jvn.jp/en/jp/JVN07538357/index.html | Vendor Advisory |
Configurations
Information
Published : 2015-05-01 03:59
Updated : 2015-05-04 05:59
NVD link : CVE-2015-0913
Mitre link : CVE-2015-0913
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
kozos
- easyctf