Description
chatbox.php in e107 0.554 and 0.603 allows remote attackers to cause a denial of service (pages fail to load) via HTML in the Name field, which prevents the main.php form from being loaded.
Remediation
References
Related Vulnerabilities
WordPress Plugin YITH WooCommerce Product Add-Ons Cross-Site Scripting (2.2.2)
MediaWiki Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2020-35624)
Plone CMS Improper Input Validation Vulnerability (CVE-2013-4192)
MongoDb Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-20803)
ownCloud Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-2044)