CVE-2012-5163

2012-09-25T20:55:01
ID CVE-2012-5163
Type cve
Reporter NVD
Modified 2017-08-28T21:32:31

Description

Cross-site scripting (XSS) vulnerability in oc-admin/ajax/ajax.php in OSClass before 2.3.5 allows remote attackers to inject arbitrary web script or HTML via the id parameter in an enable_category action to index.php.