CVE-2014-7262

CVE-2014-7262

EPSS 1.8%

Cross-site scripting (XSS) vulnerability in the Omake BBS component in ULTRAPOP.JP i-HTTPD allows remote attackers to inject arbitrary web script or HTML via a crafted string.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://jvndb.jvn.jp/jvndb/JVNDB-2014-000145 http://jvn.jp/en/jp/JVN98097877/360573/index.html http://jvn.jp/en/jp/JVN98097877/index.html