Cross-zone scripting vulnerability in the NowPlaying functionality in NullSoft Winamp before 5.541 allows remote attackers to conduct cross-site scripting (XSS) attacks via an MP3 file with JavaScript in id3 tags.
Max CVSS
4.3
EPSS Score
0.34%
Published
2008-08-10
Updated
2017-09-29
1 vulnerabilities found