Description
Cross-site scripting (XSS) vulnerability in safe_html.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users with permissions to edit content to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Embed Swagger Cross-Site Scripting (1.0.0)
MySQL CVE-2019-2630 Vulnerability (CVE-2019-2630)
Jetty Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-22201)
Joomla! Core 1.0.x Cross-Site Scripting (1.0.0 - 1.0.11)
WordPress Plugin Image Gallery-Responsive Photo Gallery Cross-Site Scripting (1.4.0)