CVE-2013-4899

Publication date

2013-09-09 17:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in Twilight CMS 5.17 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the gallery/ page.