zTree v3 Security Advisory – XSS Vulnerability – CVE-2015-7348

November 17, 2015 007admin Leave a comment

Posted by Onur Yilmaz on Nov 17

Information
——————–
Advisory by Netsparker.
Name: Multiple XSS Vulnerabilities in zTree v3
Affected Software : zTree
Affected Versions: v3.5.19.1 and possibly below
Vendor Homepage : https://github.com/zTree/zTree_v3
Vulnerability Type : Cross-site Scripting
Severity : Important
Status : Fixed
CVE-ID : CVE-2015-7348
Netsparker Advisory Reference : NS-15-019

Description
——————–
By exploiting a Cross-site scripting…

007 Software

zTree v3 Security Advisory – XSS Vulnerability – CVE-2015-7348

Leave a Reply Cancel reply

Software and Security Information