CVE-2013-4103 – Cryptocat 2.0.22 - Arbitrary Script Injection

https://notcve.org/view.php?id=CVE-2013-4103

Cryptocat before 2.0.22 has Remote Script Injection due to improperly sanitizing user input Cryptocat versiones anteriores a 2.0.22, presenta una Inyección de Script Remota debido a un saneamiento de la entrada de usuario de manera inapropiada. Cryptocat versions prior to 2.0.22 are vulnerability to a script injection vulnerability. • https://www.exploit-db.com/exploits/38637 http://packetstormsecurity.com/files/134252/Cryptocat-Script-Insertion.html https://packetstormsecurity.com/files/cve/CVE-2013-4103 https://tobtu.com/decryptocat.php https://www.openwall.com/lists/oss-security/2013/07/10/15 https://www.securityfocus.com/bid/61093 • CWE-20: Improper Input Validation •