Description

Cross-site scripting (XSS) vulnerability in concrete5 Japanese 5.5.1 through 5.5.2.1 and concrete5 English 5.5.0 through 5.6.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2012-5181

Related Vulnerabilities

WordPress Plugin WordPress Email Template Designer-WP HTML Mail Cross-Site Request Forgery (3.0.6)

MySQL CVE-2018-3081 Vulnerability (CVE-2018-3081)

Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-2221)

WordPress Plugin GDPR CCPA Compliance Support PHP Object Injection (2.3)

WordPress Plugin WP Fastest Cache Multiple Vulnerabilities (0.8.5.7)

Severity

Medium

Classification

CVE-2012-5181 CWE-707

Tags

Missing Update Known Vulnerabilities