CVE-2013-5966

2022-10-0316:14:56

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.7%

JSON

Cross-site scripting (XSS) vulnerability in ZK Framework before 5.0.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

archives.neohapsis.com/archives/fulldisclosure/2013-11/0101.html

secunia.com/advisories/55690

github.com/zkoss/zk/blob/v5.0.13/zkdoc/release-note