Medium severity6.1NVD Advisory· Published Nov 22, 2019· Updated Jun 17, 2026
CVE-2013-6880
CVE-2013-6880
Description
Open redirect in proxy.php in FlashCanvas before 1.6 allows remote attackers to redirect users to arbitrary web sites and conduct cross-site scripting (XSS) attacks via the HTTP Referer header.
Affected products
2- FlashCanvas/FlashCanvasdescription
- Range: <1.6
Patches
Vulnerability mechanics
References
4- www.7elements.co.uk/resources/blog/cve-2013-6880-proof-conceptnvdExploitThird Party Advisory
- www.7elements.co.uk/news/cve-2013-6880nvdThird Party Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/89663nvdThird Party AdvisoryVDB Entry
- archives.neohapsis.com/archives/bugtraq/2013-12/0051.htmlnvdBroken Link
News mentions
0No linked articles in our index yet.