02 Mar 2015
CVE-2015-2198 Vulnerability
Multiple cross-site scripting (XSS) vulnerabilities in edit_prefs.php in Beehive Forum 1.4.4 allow remote attackers to inject arbitrary web script or HTML via the (1) homepage_url, (2) pic_url, or (3) avatar_url parameter, which are not properly handled in an error message. (CVSS:4.3) (Last Update:2015-03-04)
Vulnerability Details : (1 public exploit) Multiple cross-site scripting (XSS) vulnerabilities in edit_prefs.php in Beehive Forum 1.4.4 allow remote attackers to inject arbitrary web script or HTML via the (1) homepage_url, (2) pic_url, or (3) avatar_url parameter, which are not properly handled in an error message. Publish Date : 2015-03-03 Last Update Date : 2015-03-04 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2015-2198
- Number Of Affected Versions By Product
- References For CVE-2015-2198
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2015-2198There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |