Mobile Safari in Apple iOS before 7 does not prevent HTML interpretation of a document served with a text/plain content type, which allows remote attackers to conduct cross-site scripting (XSS) attacks by uploading a file.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2013-09-19T10:00:00
Updated: 2024-08-06T17:06:51.550Z
Reserved: 2013-08-15T00:00:00
Link: CVE-2013-5151
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2013-09-19T10:28:00.947
Modified: 2013-10-22T19:53:25.857
Link: CVE-2013-5151
Redhat
No data.