CVE-2013-3639

Publication date

2014-02-05 15:00:00

Family

mitre

State

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in Xaraya 2.4.0-b1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) id, (2) interface, (3) name, or (4) tabmodule parameter to index.php.