CVE-2013-0125

C2enterprise C2 Webresource - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in fileview.asp in C2 WebResource allows remote attackers to inject arbitrary web script or HTML via the File parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED

by anonymous · textwebappsasp

https://www.exploit-db.com/exploits/38415

View Code ZIP pw:eip

References (1)

[Exploit, US Government Resource] http://www.kb.cert.org/vuls/id/418923

Scores

EPSS 0.0243

EPSS Percentile 85.0%

Details

CWE

CWE-79

Status published

Products (2)

c2enterprise/c2_webresource

n/a/n/a

Published Apr 04, 2013

Tracked Since Feb 18, 2026