XSS in Softaculous Webuzo

CVE-2013-6042

Cross-site scripting (XSS) vulnerability in filemanager/login.php in the File Manager module in Softaculous Webuzo before 2.1.4 allows remote attackers to inject arbitrary web script or HTML via the user parameter.

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.009 (76.3th percentile) — read the EPSS interpretation.