Multiple cross-site scripting (XSS) vulnerabilities in Easy File Sharing (EFS) Web Server 6.8 allow remote authenticated users to inject arbitrary web script or HTML via the content parameter when (1) creating a topic or (2) posting an answer. NOTE: some of these details are obtained from third party information.
References
Configurations
History
No history.
Information
Published : 2014-08-06 18:55
Updated : 2024-02-28 12:20
NVD link : CVE-2014-5178
Mitre link : CVE-2014-5178
CVE.ORG link : CVE-2014-5178
JSON object : View
Products Affected
efssoft
- easy_file_sharing_web_server
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')