Multiple cross-site scripting (XSS) vulnerabilities in the web based operator client in LiveZilla prior to 5.1.2.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) name of an uploaded file or (2) customer name in a resource created from an uploaded file, a different vulnerability than CVE-2013-7003.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
livezilla livezilla 5.1.0.0 |
||
livezilla livezilla 5.0.1.4 |
||
livezilla livezilla 4.1.0.4 |
||
livezilla livezilla 4.1.0.3 |
||
livezilla livezilla 5.0.1.1 |
||
livezilla livezilla 5.0.1.0 |
||
livezilla livezilla 3.2.0.2 |
||
livezilla livezilla 3.1.8.3 |
||
livezilla livezilla |
||
livezilla livezilla 5.1.1.0 |
||
livezilla livezilla 4.2.0.5 |
||
livezilla livezilla 4.2.0.4 |
||
livezilla livezilla 5.0.1.3 |
||
livezilla livezilla 5.0.1.2 |
||
livezilla livezilla 4.0.1.2 |
||
livezilla livezilla 4.0.1.1 |
||
livezilla livezilla 4.0.1.0 |