5.7 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
57.8%
Cross-site scripting (XSS) vulnerability in default.php in Kipper 2.01 allows remote attackers to inject arbitrary web script or HTML via the charm parameter.
secunia.com/advisories/33832
www.securityfocus.com/bid/33640
www.exploit-db.com/exploits/7993