CVE-2013-6239

Name of the Vulnerable Software and Affected Versions Exis Contexis versions prior to 2.0

Description A cross-site scripting (XSS) issue exists in the photo gallery model, allowing remote attackers to inject arbitrary web script or HTML via the image parameter in a detail action.

Recommendations For versions prior to 2.0, update to version 2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the photo gallery model to minimize the risk of exploitation. Avoid using the image parameter in the affected detail action until the issue is resolved.