VYPR
Unrated severityNVD Advisory· Published Mar 25, 2014· Updated Jun 16, 2026

CVE-2013-5951

CVE-2013-5951

Description

Multiple cross-site scripting (XSS) vulnerabilities in eXtplorer 2.1.3, when used as a component for Joomla!, allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) application.js.php in scripts/ or (2) admin.php, (3) copy_move.php, (4) functions.php, (5) header.php, or (6) upload.php in include/.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:extplorer:extplorer:2.1.3:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:extplorer:extplorer:2.1.3:*:*:*:*:*:*:*
    • (no CPE)range: <=2.1.3

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.