Main Vulnerability Database Exploits ID:3560 - Exploit for Cross-site scripting in CodeIgniter - CVE-2012-1915

ID:3560 - Exploit for Cross-site scripting in CodeIgniter - CVE-2012-1915

Published: July 20, 2020

Vulnerability identifier: #VU30451

Vulnerability risk: Low

CVE-ID: CVE-2012-1915

CWE-ID: CWE-79

Exploitation vector: Remote access

Vulnerable software:
CodeIgniter

Link to public exploit:

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

EllisLab CodeIgniter 2.1.2 allows remote attackers to bypass the xss_clean() Filter and perform XSS attacks.

Install update from vendor's website.