← back
CVE-2013-7032

CVE-2013-7032

EPSS 1.8%
Multiple cross-site scripting (XSS) vulnerabilities in the web based operator client in LiveZilla before 5.1.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) name of an uploaded file or (2) customer name in a resource created from an uploaded file, a different vulnerability than CVE-2013-7003.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2013-12/0074.htmlhttp://osvdb.org/101080https://exchange.xforce.ibmcloud.com/vulnerabilities/89809http://www.livezilla.net/board/index.php?/topic/163-livezilla-changelog