Description
Cross-site scripting (XSS) vulnerability in Dotclear before 2.6.4 allows remote attackers to inject arbitrary web script or HTML via a crafted page.
Remediation
References
Related Vulnerabilities
EspoCRM Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2022-38844)
RubyGems Origin Validation Error Vulnerability (CVE-2017-0902)
WordPress Plugin Frontend File Manager Arbitrary File Upload (1.8)
Apache httpd remote denial of service
WordPress Plugin All Video Gallery 'vid' Parameter Multiple SQL Injection Vulnerabilities (1.1)