Multiple Cross-Site Scripting Vulnerabilities in eXtplorer by eXtplorer Team
CVE-2015-0896

Currently unrated

Key Information:

Vendor: Extplorer
Status: Extplorer
Vendor: CVE Published:; 18 March 2015

What is CVE-2015-0896?

Multiple vulnerabilities in eXtplorer prior to version 2.1.7 can be exploited by remote attackers to inject arbitrary web scripts or HTML code through various, unspecified vectors. This exposes users to potential phishing attacks and unauthorized actions executed in their context, thereby compromising the security of the application and its users.

References

http://jvndb.jvn.jp/jvndb/JVNDB-2015-000039

third-party-advisoryx_refsource_JVNDB

http://jvn.jp/en/jp/JVN97099798/index.html

third-party-advisoryx_refsource_JVN

http://extplorer.net/news/16

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 18, 2015
Vulnerability Reserved
Jan 8, 2015

CVE-2015-0896 Data

JSON

Extplorer

What is CVE-2015-0896?

References

Timeline