Vulnerabilities > Realtime Projects

DATE CVE VULNERABILITY TITLE RISK
2020-01-02 CVE-2013-1642 Cross-site Scripting vulnerability in Realtime-Projects Quixplorer
Multiple cross-site scripting (XSS) vulnerabilities in QuiXplorer before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via the (1) dir, (2) item, (3) order, (4) searchitem, (5) selitems[], or (6) srt parameter to index.php or (7) the QUERY_STRING to index.php.
4.3