Cross-site scripting (XSS) vulnerability in The Address Book 1.04e allows remote attackers to inject arbitrary web script or HTML by uploading the HTML file with a GIF or JPG extension, which is rendered by Internet Explorer.
Name | Vendor | Start Version | End Version |
---|---|---|---|
The_address_book | The_address_book | 1.04e (including) | 1.04e (including) |