Description
Cross-site scripting (XSS) vulnerability in ecrire/tools.php in DotClear 1.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified form fields on the blogroll page.
Remediation
References
Related Vulnerabilities
Moodle Improper Validation of Integrity Check Value Vulnerability (CVE-2021-20184)
WordPress Plugin Social Auto Poster-WordPress Scheduler & Marketing Arbitrary File Upload (5.3.14)
Oracle JRE CVE-2020-2754 Vulnerability (CVE-2020-2754)
WordPress Plugin SEO Redirection-301 Redirect Manager SQL Injection (8.1)