Description
Cross-site scripting (XSS) vulnerability in System.Web.Mvc.dll in Microsoft ASP.NET Model View Controller (MVC) 2.0 through 5.1 allows remote attackers to inject arbitrary web script or HTML via a crafted web page, aka "MVC XSS Vulnerability."
Remediation
References
Related Vulnerabilities
Apache Tomcat Improper Input Validation Vulnerability (CVE-2013-4322)
WordPress Plugin WP Mail Logging Cross-Site Scripting (1.8.2)
WordPress Plugin Bootstrap Shortcodes Cross-Site Scripting (3.4.0)
WordPress Plugin Product Catalog Unspecified Vulnerability (3.1.3)
WordPress Plugin Custom 404 Pro Cross-Site Scripting (3.2.8)