CVE-2013-1749

Chatelao Php Address Book - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in edit.php in PHP Address Book 8.2.5 allows user-assisted remote attackers to inject arbitrary web script or HTML via the Address field.

References (1)

[Exploit] http://openwall.com/lists/oss-security/2013/04/17/2

Scores

EPSS 0.0022

EPSS Percentile 45.0%

Details

CWE

CWE-79

Status published

Products (2)

chatelao/php_address_book

n/a/n/a

Published Apr 18, 2013

Tracked Since Feb 18, 2026