Description
Multiple cross-site scripting (XSS) vulnerabilities in clientResponse 4.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Subject or (2) Message field.
Exploits (1)
exploitdb
WRITEUP
by Halil Dalabasmaz · textwebappsmultiple
https://www.exploit-db.com/exploits/35248
References (2)
Core 2
Core References
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/35248
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/98734
Scores
EPSS
0.0089
EPSS Percentile
75.5%
Details
CWE
CWE-79
Status
published
Products (1)
clientresponse_project/clientresponse
4.1
Published
Jan 13, 2015
Tracked Since
Feb 18, 2026