CVE-2015-5519

CVE-2015-5519

EPSS 2.2%

Cross-site scripting (XSS) vulnerability in the applyConvolution demo in WideImage 11.02.19 allows remote attackers to inject arbitrary web script or HTML via the matrix parameter to demo/index.php.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://packetstormsecurity.com/files/132584/WideImage-11.02.19-Cross-Site-Scripting.html http://seclists.org/fulldisclosure/2015/Jul/30 http://sourceforge.net/p/wideimage/bugs/42/