Multiple cross-site scripting (XSS) vulnerabilities in Frams' Fast File EXchange (F*EX, aka fex) before fex-20140530 allow remote attackers to inject arbitrary web script or HTML via the (1) akey parameter to rup or (2) disclaimer or (3) gm parameter to fuc.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2014-06-18T14:00:00
Updated: 2014-06-18T13:57:01
Reserved: 2014-05-27T00:00:00
Link: CVE-2014-3876
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-06-18T14:55:12.897
Modified: 2014-06-18T18:24:11.403
Link: CVE-2014-3876
JSON object: View
Redhat Information
No data.
CWE