Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5651)

Description

Cross-site scripting (XSS) vulnerability in Dotclear before 2.8.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2015-5651

Related Vulnerabilities

MySQL CVE-2020-14623 Vulnerability (CVE-2020-14623)

PHP Improper Input Validation Vulnerability (CVE-2007-6039)

WordPress Plugin Yet Another Photoblog Unspecified Vulnerability (1.10.6)

WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler PHP Object Injection (5.0.0)

WordPress Plugin wpCommentTwit Cross-Site Request Forgery (0.5)

Severity

Medium

Classification

CVE-2015-5651 CWE-707

Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5651)

Description

Remediation

References

Related Vulnerabilities

Severity

Classification

Tags

Take action and discover your vulnerabilities