01642 06 11 11 Arrange Call

Zikula Application Framework XSS Vulnerability in index.php

CVE-2013-6168 · MEDIUM

CVE-2013-6168

Cross-site scripting (XSS) vulnerability in Zikula Application Framework before 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the returnpage parameter to index.php.

Learn more about our Web App Pen Testing.