CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Phpcaptcha: >> Securimage >> 3.5.2 Security Vulnerabilities

CVE-2017-14077

HTML Injection in Securimage 3.6.4 and earlier allows remote attackers to inject arbitrary HTML into an e-mail message body via the $_SERVER['HTTP_USER_AGENT'] parameter to example_form.ajax.php or example_form.php.

CVSS Score

6.1

EPSS Score

0.002

Published

2017-11-18

Page 1

Vulnerabilities

Vulnerable Software

Phpcaptcha: >> Securimage >> 3.5.2 Security Vulnerabilities

Products

Pricing

Contact Us