nZEDb v0.4.20 is affected by a Cross Site Scripting (XSS) vulnerability in www/pages/api.php. The exit function will terminate the script and print the message which has the input $_GET['t'].
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nzedb project nzedb 0.4.20 |