Security Advisory

CVE-2013-6808

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-12-28 02:00:00

Last updated 2024-08-06 17:46:23

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in lib/NSSDropoff.php in ZendTo before 4.11-13 allows remote attackers to inject arbitrary web script or HTML via a modified emailAddr field to pickup.php.

← Browse all CVEs View on cve.org ↗