Description
Cross-site scripting (XSS) vulnerability in e107 0.617 and earlier allows remote attackers to inject arbitrary web script or HTML via nested [url] BBCode tags.
Remediation
References
Related Vulnerabilities
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4422)
IBM RTC Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-1103)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2080)
WordPress Plugin Apptivo Business Site CRM Multiple Cross-Site Scripting Vulnerabilities (1.2.9)