Description
XSS was discovered in Dotclear v2.11.2, affecting admin/blogs.php and admin/users.php with the sortby and order parameters.
Remediation
References
Related Vulnerabilities
WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.15)
SharePoint CVE-2020-1218 Vulnerability (CVE-2020-1218)
WordPress Plugin Malware Finder Cross-Site Scripting (1.1)
WordPress Plugin Software License Manager Cross-Site Scripting (4.4.7)
WordPress Plugin PowerPack Lite for Beaver Builder Local File Inclusion (1.3.0.3)