CVE-2013-4795

Publication date

2014-04-11 14:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the Submitters list in Review Board 1.6.x before 1.6.18 and 1.7.x before 1.7.12 allows remote attackers to inject arbitrary web script or HTML via a user full name.