Required CVE Record Information
Description
Cross-site scripting (XSS) vulnerability in editor.php in Network Weathermap before 0.97b allows remote attackers to inject arbitrary web script or HTML via the map_title parameter.
References 7 Total
- securityfocus.com: 58793 vdb-entry
- http://packetstormsecurity.com/files/121034/Network-Weathermap-0.97a-Cross-Site-Scripting.html
- exchange.xforce.ibmcloud.com: networkweathermap-cve20132618-xss(83187) vdb-entry
- seclists.org: 20130401 Network Weathermap 0.97a - Persistent XSS mailing-list
- http://www.network-weathermap.com/content/security-notice-cve-2013-2618-network-weathermap-097a-persistent-xss
- exploit-db.com: 24913 exploit
- osvdb.org: 91869 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 7 Total
- securityfocus.com: 58793 vdb-entryx_transferred
- http://packetstormsecurity.com/files/121034/Network-Weathermap-0.97a-Cross-Site-Scripting.html x_transferred
- exchange.xforce.ibmcloud.com: networkweathermap-cve20132618-xss(83187) vdb-entryx_transferred
- seclists.org: 20130401 Network Weathermap 0.97a - Persistent XSS mailing-listx_transferred
- http://www.network-weathermap.com/content/security-notice-cve-2013-2618-network-weathermap-097a-persistent-xss x_transferred
- exploit-db.com: 24913 exploitx_transferred
- osvdb.org: 91869 vdb-entryx_transferred