CVE

Id
84985  
CVE No.
CVE-2015-7708  
Status
Candidate  
Description
Cross-site scripting (XSS) vulnerability in 4images 1.7.11 and earlier allows remote attackers to inject arbitrary web script or HTML via the cat_description parameter in an updatecat action to admin/categories.php.  
Phase
Assigned (20151005)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
751019 84985 CVE-2015-7708 FULLDISC:20150925 Stored XSS in 4images <= v1.7.11  View
751020 84985 CVE-2015-7708 URL:http://seclists.org/fulldisclosure/2015/Sep/95  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
9850 JVNDB-2015-005170 Apple OS X の launchd の libxpc におけるサービス運用妨害 (DoS) の脆弱性 Apple OS X の launchd の libxpc は、ネットワーク接続のプロセスの作成を制限しないため、サービス運用妨害 (リソース消費) 状態にされる脆弱性が存在します。 CVE-2015-7760 84985 5 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005170.html  View