CVE-2014-5113
Multiple cross-site scripting (XSS) vulnerabilities in test.php in Visualware MyConnection Server 9.7i allow remote attackers to inject arbitrary web script or HTML via the (1) testtype, (2) ver, (3) cm, (4) map, (5) lines, (6) pps, (7) bpp, (8) codec, (9) provtext, (10) provtextextra, (11) provlink, or (12) duration parameter.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0033 (0.3%)
Percentil: 56.1%
EPSS: 2026-05-06
Afecta
visualware:myconnection_serverDescripción técnica
Multiple cross-site scripting (XSS) vulnerabilities in test.php in Visualware MyConnection Server 9.7i allow remote attackers to inject arbitrary web script or HTML via the (1) testtype, (2) ver, (3) cm, (4) map, (5) lines, (6) pps, (7) bpp, (8) codec, (9) provtext, (10) provtextextra, (11) provlink, or (12) duration parameter.
Publicada: 28/7/2014, 15:55:04
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://packetstormsecurity.com/files/127545/MyConnection-Server-MCS-9.7i-Cross-Site-Scripting.html
- http://treadstonesecurity.blogspot.ca/2014/07/myconnection-server-mcs-reflective-xss.html
- http://www.securityfocus.com/bid/68793
- http://packetstormsecurity.com/files/127545/MyConnection-Server-MCS-9.7i-Cross-Site-Scripting.html
- http://treadstonesecurity.blogspot.ca/2014/07/myconnection-server-mcs-reflective-xss.html
- http://www.securityfocus.com/bid/68793