Description
Cross-site scripting (XSS) vulnerability in Chatbox Plugin 1.0 in e107 0.7.2 allows remote attackers to inject arbitrary HTML or web script via a Chatbox, as demonstrated using a SCRIPT element.
Remediation
References
Related Vulnerabilities
Dotclear Improper Access Control Vulnerability (CVE-2015-8832)
Oracle Database Server CVE-2008-1818 Vulnerability (CVE-2008-1818)
Oracle JRE CVE-2013-2443 Vulnerability (CVE-2013-2443)
Oracle JRE CVE-2012-1532 Vulnerability (CVE-2012-1532)
Internet Information Services Other Vulnerability (CVE-2002-1744)