Cross site scripting

2012-02-0217:55:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.6%

JSON

Cross-site scripting (XSS) vulnerability in misc.php in Image Hosting Script DPI 1.0, 1.3, and earlier allows remote attackers to inject arbitrary web script or HTML via the showseries parameter.

CPENameOperatorVersion
image_hosting_script_dpieq1.0
image_hosting_script_dpile1.3

CPE	Name	Operator	Version
	image_hosting_script_dpi	eq	1.0
	image_hosting_script_dpi	le	1.3

References

osvdb.org/78660

packetstormsecurity.org/files/view/109240/dpi10-xss.txt

secunia.com/advisories/47786

www.securityfocus.com/bid/51734

exchange.xforce.ibmcloud.com/vulnerabilities/72823