Description
Cross-site scripting (XSS) vulnerability in claroline/linker/notfound.php in Claroline 1.8.11 allows remote attackers to inject arbitrary web script or HTML via the Referer HTTP header.
Remediation
References
Related Vulnerabilities
PostgreSQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32028)
WordPress Plugin Wholesale Market for WooCommerce Arbitrary File Download (1.0.7)
Oracle Database Server CVE-2015-4900 Vulnerability (CVE-2015-4900)
Apache Tomcat CVE-2018-1305 Vulnerability (CVE-2018-1305)
WordPress Plugin AccessPress Social Icons SQL Injection (1.8.0)