Description
Cross-site scripting (XSS) vulnerability in Direct Web Remoting (DWR) through 2.0.10 and 3.x through 3.0.RC2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Appointment Booking Calendar Cross-Site Scripting (1.3.18)
WordPress Plugin Simple add pages or posts Cross-Site Request Forgery (1.6)
SharePoint Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-5059)
WordPress Plugin Share Buttons by AddThis Cross-Site Scripting (4.0.7)