Arbitrary Script Injection in kPlaylist 1.6 (build 400)

Arbitrary Script Injection in kPlaylist 1.6 (build 400)

CVE-2005-3841 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in kPlaylist 1.6 (build 400), and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the searchfor search parameter.

Learn more about our Web App Pen Testing.