CVE-2013-7277
Andy’s PHP Knowledgebase (Aphpkb) is affected by CVE-2013-7277 via multiple XSS vectors in versions before 0.95.8: (1) HTTP Referer header to saa.php, (2) username parameter to login.php, and (3) keyword_list parameter to keysearch.php. The underlying issue enables a remote attacker to inject arb...