Description
Cross-site scripting (XSS) vulnerability in topic.php in Camera Life 2.6.2b4 allows remote attackers to inject arbitrary web script or HTML via the name parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by BackDoor · textwebappsphp
https://www.exploit-db.com/exploits/6710
References (4)
Core 4
Core References
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/31689
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/45805
Product x_refsource_confirm
http://sourceforge.net/project/shownotes.php?group_id=70910&release_id=643552
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/6710
Scores
EPSS
0.0415
EPSS Percentile
88.7%
Details
CWE
CWE-79
Status
published
Products (1)
camera_life/camera_life
2.6.2b4
Published
Feb 06, 2009
Tracked Since
Feb 18, 2026