2 matches found
CVE-2013-5956
Cross-site scripting XSS vulnerability in includes/flvthumbnail.php in the Youtube Gallery comyoutubegallery component 3.4.0 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the videofile parameter...
CVE-2013-5956
CVE-2013-5956 describes a cross-site scripting (XSS) flaw in the Joomla! component Youtube Gallery (com_youtubegallery) version 3.4.0, specifically in the file includes/flvthumbnail.php . The vulnerability allows remote attackers to inject arbitrary web script or HTML via the videofile parameter....