Description

Cross-site scripting (XSS) vulnerability in edit.php in PHP Address Book 8.2.5 allows user-assisted remote attackers to inject arbitrary web script or HTML via the Address field.

Remediation

References

CVE-2013-1749

Related Vulnerabilities

Jboss EAP Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-1336)

Squid Improper Input Validation Vulnerability (CVE-2020-24606)

WordPress Plugin Ivory Search-WordPress Search Cross-Site Scripting (4.7.1)

Jboss EAP Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2011-2487)

MySQL CVE-2014-2436 Vulnerability (CVE-2014-2436)

Severity

Medium

Classification

CVE-2013-1749 CWE-707

Tags

Missing Update Known Vulnerabilities