4 matches found
CVE-2012-4336
CVE-2012-4336 affects Flogr 2.5.6 and earlier with multiple cross-site scripting (XSS) vulnerabilities in index.php. Web attackers can inject arbitrary script/HTML via (1) PATH_INFO (e.g., /index.php/) or (2) any GET parameter, leading to script execution in a victim’s browser. PoC examples and a...
Cross-Site Scripting (XSS) Vulnerabilities in Flogr
Advisory ID: HTB23110 Product: Flogr Vendor: Flogr Vulnerable Versions: 2.5.6 and probably prior Tested Version: 2.5.6 Vendor Notification: August 15, 2012 Public Disclosure: September 5, 2012 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: CVE-2012-4336 CVSSv2 Base Score: 4.3...
Flogr 2.5.6 Cross Site Scripting Vulnerability
Exploit for php platform in category web applications Product: Flogr Vendor: Flogr Vulnerable Versions: 2.5.6 and probably prior Tested Version: 2.5.6 Vendor Notification: August 15, 2012 Public Disclosure: September 5, 2012 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference:...
Flogr 2.5.6 Cross Site Scripting
Advisory ID: HTB23110 Product: Flogr Vendor: Flogr Vulnerable Versions: 2.5.6 and probably prior Tested Version: 2.5.6 Vendor Notification: August 15, 2012 Public Disclosure: September 5, 2012 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: CVE-2012-4336 CVSSv2 Base Score: 4.3...