CVE-2014-3877

2014-06-18T10:55:12
ID CVE-2014-3877
Type cve
Reporter NVD
Modified 2014-06-18T14:27:01

Description

Incomplete blacklist vulnerability in Frams' Fast File EXchange (F*EX, aka fex) before fex-20140530 allows remote attackers to conduct cross-site scripting (XSS) attacks via the addto parameter to fup.