Description

Cross-site scripting (XSS) vulnerability in e107 0.7.22 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2011-0457

Related Vulnerabilities

Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5501)

Oracle JRE CVE-2013-0427 Vulnerability (CVE-2013-0427)

PHP Other Vulnerability (CVE-2007-4889)

ownCloud Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-24804)

ReviveAdserver Improper Access Control Vulnerability (CVE-2015-7367)

Severity

Medium

Classification

CVE-2011-0457 CWE-707

Tags

Missing Update Known Vulnerabilities