6 matches found
GHSA-F8P3-Q834-Q9CJ php-mod/curl allows Cross-site Scripting
php-mod/curl a wrapper of the PHP cURL extension before 2.3.2 allows XSS via the postfilepathupload.php key parameter and the POST data to postmultidimensional.php...
CVE-2021-30134
php-mod/curl a wrapper of the PHP cURL extension before 2.3.2 allows XSS via the postfilepathupload.php key parameter and the POST data to postmultidimensional.php...
Design/Logic Flaw
php-mod/curl a wrapper of the PHP cURL extension before 2.3.2 allows XSS via the postfilepathupload.php key parameter and the POST data to postmultidimensional.php...
EUVD-2022-7617
php-mod/curl a wrapper of the PHP cURL extension before 2.3.2 allows XSS via the postfilepathupload.php key parameter and the POST data to postmultidimensional.php...
CVE-2021-30134
php-mod/curl a wrapper of the PHP cURL extension before 2.3.2 allows XSS via the postfilepathupload.php key parameter and the POST data to postmultidimensional.php...
CVE-2021-30134
CVE-2021-30134 affects the php-mod/curl library (wrapper around PHP cURL) before version 2.3.2. The vulnerability enables cross-site scripting via the POST data to post_multidimensional.php and the key parameter post_file_path_upload.php, allowing injection of arbitrary scripts. Connected templat...