Description

Cross-site scripting (XSS) vulnerability in user.php in e107 allows remote attackers to inject arbitrary web script or HTML via the (1) URL, (2) MSN, or (3) AIM fields.

Remediation

References

CVE-2004-2031

Related Vulnerabilities

WordPress Plugin Formidable Forms-Contact Form, Survey, Quiz, Calculator & Custom Form Builder Cross-Site Request Forgery (5.5.6)

Jetty Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-8184)

PHP Other Vulnerability (CVE-2007-1376)

PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-30839)

WordPress 4.6.x Multiple Vulnerabilities (4.6 - 4.6.6)

Severity

Medium

Classification

CVE-2004-2031

Tags

Missing Update Known Vulnerabilities