Cross-site scripting (XSS) vulnerability in cPlayer.php in FlashCard 2.6.5 and 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: some of these details are obtained from third party information.
References
Link | Resource |
---|---|
http://packetstormsecurity.org/1004-exploits/flashcard-xss.txt | Exploit |
http://secunia.com/advisories/39484 | Vendor Advisory |
http://www.securityfocus.com/bid/39648 | Exploit |
http://www.xenuser.org/documents/security/flashcard_xss.txt | Exploit |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:20:58
Updated: 2022-10-03T16:20:58
Reserved: 2022-10-03T00:00:00
Link: CVE-2010-1872
JSON object: View
NVD Information
Status : Analyzed
Published: 2010-05-12T11:46:12.437
Modified: 2010-05-12T11:46:12.437
Link: CVE-2010-1872
JSON object: View
Redhat Information
No data.
CWE