Cross site scripting

2008-07-2516:41:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.6%

JSON

Cross-site scripting (XSS) vulnerability in mensaje.php in C. Desseno YouTube Blog (ytb) 0.1 allows remote attackers to inject arbitrary web script or HTML via the m parameter.

CPENameOperatorVersion
youtube_blogeq0.1

CPE	Name	Operator	Version
	youtube_blog	eq	0.1

References

secunia.com/advisories/31161

securityreason.com/securityalert/4037

www.securityfocus.com/bid/30345

exchange.xforce.ibmcloud.com/vulnerabilities/43953

www.exploit-db.com/exploits/6117