Description

Cross-site scripting (XSS) vulnerability in e107 0.617 and earlier allows remote attackers to inject arbitrary web script or HTML via nested [url] BBCode tags.

Remediation

References

CVE-2005-2327

Related Vulnerabilities

WordPress Plugin Easy Digital Downloads QR Code Cross-Site Scripting (1.1.0)

Oracle Database Server CVE-2008-0344 Vulnerability (CVE-2008-0344)

WordPress Plugin Custom Login Page Customizer-LoginPress Multiple Vulnerabilities (1.1.13)

PHP Numeric Errors Vulnerability (CVE-2007-3996)

WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.9.86)

Severity

Medium

Classification

CVE-2005-2327

Tags

Missing Update Known Vulnerabilities