Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-5952

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2013-5952
Last Modified 20 Mar 2014 10:10:53
Published 19 Mar 2014 10:17:05
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2013-5952

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the Freichat (com_freichat) component, possibly 9.4 and earlier, for Joomla! allow remote attackers to inject arbitrary web script or HTML via the (1) id or (2) xhash parameter to client/chat.php or (3) toname parameter to client/plugins/upload/upload.php.

Vulnerable Systems

Application

  • Codologic Com Freichat 9.4


References

XF - freichat-cve20135952-xss(91824)

SECUNIA - 57361

MISC - http://packetstormsecurity.com/files/125737

FULLDISC - 20140315 [CVE-2013-5952] Multiple Cross Site Scripting Vulnerabilities in Freichat


Last Updated: 27 May 2016 11:04:44