CVE-2013-5670

2013-11-05T13:55:06
ID CVE-2013-5670
Type cve
Reporter NVD
Modified 2013-11-06T20:23:31

Description

Cross-site scripting (XSS) vulnerability in spell-check-savedicts.php in the htmlarea SpellChecker module, as used in Serendipity before 1.7.3 and possibly other products, allows remote attackers to inject arbitrary web script or HTML via the to_r_list parameter.