CVE-2013-4556

2013-11-17T21:55:08
ID CVE-2013-4556
Type cve
Reporter NVD
Modified 2016-12-07T22:03:40

Description

Cross-site scripting (XSS) vulnerability in the author page (prive/formulaires/editer_auteur.php) in SPIP before 2.1.24 and 3.0.x before 3.0.12 allows remote attackers to inject arbitrary web script or HTML via the url_site parameter.