Cross-Site Scripting Vulnerability in Chevereto by Chevereto
CVE-2012-2918

Currently unrated

Key Information:

Vendor

Chevereto

Status
Vendor
CVE Published:
21 May 2012

What is CVE-2012-2918?

A Cross-Site Scripting (XSS) vulnerability exists in the upload engine of Chevereto version 1.91, allowing remote attackers to execute arbitrary web scripts or inject HTML through the 'v' parameter. This vulnerability can lead to various security issues, such as unauthorized access to sensitive information or exploitation of user sessions.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.