Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-5951

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2013-5951
Last Modified 25 Mar 2014 02:03:00
Published 25 Mar 2014 12:55:28
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2013-5951

Summary

Multiple cross-site scripting (XSS) vulnerabilities in eXtplorer 2.1.3, when used as a component for Joomla!, allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) application.js.php in scripts/ or (2) admin.php, (3) copy_move.php, (4) functions.php, (5) header.php, or (6) upload.php in include/.

Vulnerable Systems

Application

  • Extplorer 2.1.3


References

DEBIAN - DSA-2882

SECUNIA - 57482

SECUNIA - 57387

FULLDISC - 20140315 [CVE-2013-5951] Multiple Cross Site Scripting Vulnerabilities in eXtplorer 2.1.3


Last Updated: 27 May 2016 11:03:22