CVE-2013-6224
Last modified
CVE-2013-6224 is a vulnerability of currently unknown severity. Multiple cross-site scripting (XSS) vulnerabilities in LiveZilla before 5.1.1.0 allow remote attackers to inject arbitrary web script or HTML via (1) a name in the call administrator feature, (2) unspecified vectors to the admins visitor information panel, or (3) a text message in a chat session, which is saved in the archive section.. EPSS estimates a 2.16% chance of exploitation in the next 30 days.
Description
Multiple cross-site scripting (XSS) vulnerabilities in LiveZilla before 5.1.1.0 allow remote attackers to inject arbitrary web script or HTML via (1) a name in the call administrator feature, (2) unspecified vectors to the admins visitor information panel, or (3) a text message in a chat session, which is saved in the archive section.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Livezilla | Livezilla | <= 5.1.0.0 |
| Livezilla | Livezilla | 3.1.8.3 |
| Livezilla | Livezilla | 3.2.0.2 |
| Livezilla | Livezilla | 4.0.1.0 |
| Livezilla | Livezilla | 4.0.1.1 |
| Livezilla | Livezilla | 4.0.1.2 |
| Livezilla | Livezilla | 4.1.0.3 |
| Livezilla | Livezilla | 4.1.0.4 |
| Livezilla | Livezilla | 4.2.0.4 |
| Livezilla | Livezilla | 4.2.0.5 |
| Livezilla | Livezilla | 5.0.1.0 |
| Livezilla | Livezilla | 5.0.1.1 |
| Livezilla | Livezilla | 5.0.1.2 |
| Livezilla | Livezilla | 5.0.1.3 |
| Livezilla | Livezilla | 5.0.1.4 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-6224?
How severe is CVE-2013-6224?
How do I fix CVE-2013-6224?
Are you affected by CVE-2013-6224?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST