Cross site scripting

2012-10-0417:55:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.6%

JSON

Cross-site scripting (XSS) vulnerability in audl.php in Rapidleech 2.3 rev42 SVN r358, rev43 SVN r397, and earlier allows remote attackers to inject arbitrary web script or HTML via the links parameter.

CPENameOperatorVersion
rapidleechle2.3
rapidleecheq36.0.0-rev
rapidleecheq2.3 rev42svnr358
rapidleecheq2.3 v42-svn322

Name	Operator	Version
rapidleech	le	2.3
rapidleech	eq	36.0.0-rev
rapidleech	eq	2.3 rev42svnr358
rapidleech	eq	2.3 v42-svn322

References

packetstormsecurity.org/files/108239/rapidleech-xss.txt

secunia.com/advisories/47434

www.securityfocus.com/bid/51215

exchange.xforce.ibmcloud.com/vulnerabilities/72071