CVE-2012-0869

EPSS 11.9%

fex - cross-site scripting

Published: 9/25/2012Modified: 5/10/2026

Description

Cross-site scripting (XSS) vulnerability in fup in Frams' Fast File EXchange (F*EX, aka fex) before 20120215 allows remote attackers to inject arbitrary web script or HTML via the id parameter.

Affected packages (2)

Debian/fexfrom 0, < 20120215-1
Debian/fexfrom 0, < 20100208+debian1-1+squeeze2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-0869