CVE-2012-3869

2012-08-13T16:55:09
ID CVE-2012-3869
Type cve
Reporter NVD
Modified 2012-08-14T00:00:00

Description

Cross-site scripting (XSS) vulnerability in include/classes/class.rex_list.inc.php in REDAXO 4.3.x and 4.4 allows remote attackers to inject arbitrary web script or HTML via the subpage parameter to index.php.