CVE-2014-5113
Multiple cross-site scripting (XSS) vulnerabilities in test.php in Visualware MyConnection Server 9.7i allow remote attackers to inject arbitrary web script or HTML via the (1) testtype, (2) ver, (3) cm, (4) map, (5) lines, (6) pps, (7) bpp, (8) codec, (9) provtext, (10) provtextextra, (11) provlink, or (12) duration parameter.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0033 (0.3%)
Percentile: 56.1%
EPSS: 2026-05-06
Affects
visualware:myconnection_serverTechnical description
Multiple cross-site scripting (XSS) vulnerabilities in test.php in Visualware MyConnection Server 9.7i allow remote attackers to inject arbitrary web script or HTML via the (1) testtype, (2) ver, (3) cm, (4) map, (5) lines, (6) pps, (7) bpp, (8) codec, (9) provtext, (10) provtextextra, (11) provlink, or (12) duration parameter.
Published: 7/28/2014, 3:55:04 PM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://packetstormsecurity.com/files/127545/MyConnection-Server-MCS-9.7i-Cross-Site-Scripting.html
- http://treadstonesecurity.blogspot.ca/2014/07/myconnection-server-mcs-reflective-xss.html
- http://www.securityfocus.com/bid/68793
- http://packetstormsecurity.com/files/127545/MyConnection-Server-MCS-9.7i-Cross-Site-Scripting.html
- http://treadstonesecurity.blogspot.ca/2014/07/myconnection-server-mcs-reflective-xss.html
- http://www.securityfocus.com/bid/68793