Security Advisory

CVE-2015-7383

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-09-28 01:00:00

Last updated 2024-08-06 07:51:27

Assigner certcc

State PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in Web Reference Database (aka refbase) through 0.9.6 and bleeding-edge through 2015-04-28 allow remote attackers to inject arbitrary web script or HTML via the (1) adminUserName, (2) pathToMYSQL, (3) databaseStructureFile, or (4) pathToBibutils parameter to install.php or the (5) adminUserName parameter to update.php.

← Browse all CVEs View on cve.org ↗