Description

Cross-site scripting (XSS) vulnerability in edit.php in PHP Address Book 8.2.5 allows user-assisted remote attackers to inject arbitrary web script or HTML via the Address field.

Remediation

References

CVE-2013-1749

Related Vulnerabilities

MySQL CVE-2019-2585 Vulnerability (CVE-2019-2585)

WordPress Plugin Formidable-Clockwork SMS Cross-Site Scripting (1.0.3)

WordPress Plugin WPML (WordPress Multilingual) Multiple Vulnerabilities (3.1.8.6)

MySQL 7PK - Security Features Vulnerability (CVE-2016-2047)

WordPress Plugin Battle Suit for Divi Security Bypass (1.10.1)

Severity

Medium

Classification

CVE-2013-1749 CWE-707

Tags

Missing Update Known Vulnerabilities