Unrated severityNVD Advisory· Published Feb 4, 2011· Updated Apr 29, 2026
CVE-2011-0773
CVE-2011-0773
Description
Cross-site scripting (XSS) vulnerability in pivotx/modules/module_image.php in PivotX before 2.2.3 allows remote attackers to inject arbitrary web script or HTML via the image parameter.
Affected products
9cpe:2.3:a:pivotx:pivotx:*:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:pivotx:pivotx:*:*:*:*:*:*:*:*range: <=2.2.2
- cpe:2.3:a:pivotx:pivotx:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:pivotx:pivotx:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:pivotx:pivotx:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:pivotx:pivotx:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:pivotx:pivotx:2.2.0:b1:*:*:*:*:*:*
- cpe:2.3:a:pivotx:pivotx:2.2.0:b2:*:*:*:*:*:*
- cpe:2.3:a:pivotx:pivotx:2.2.0:rc:*:*:*:*:*:*
- cpe:2.3:a:pivotx:pivotx:2.2.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- blog.pivotx.net/2011-01-31/pivotx-223-releasednvdPatchVendor Advisory
- osvdb.org/70672nvdExploit
- packetstormsecurity.org/files/view/97831/Pivotx222-xss.txtnvdExploit
- www.autosectools.com/Advisories/PivotX.2.2.2_Reflected.Cross-site.Scripting_76.htmlnvdExploit
- www.securityfocus.com/bid/45983nvdExploit
- secunia.com/advisories/43045nvdVendor Advisory
- pivot-weblog.svn.sf.net/viewvc/pivot-weblognvd
- securityreason.com/securityalert/8063nvd
- twitter.com/pivotx/statuses/29889056263376898nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/64976nvd
News mentions
0No linked articles in our index yet.