Description
Cross-site scripting (XSS) vulnerability in an unspecified page template in Plone CMS 5.x through 5.0.6, 4.x through 4.3.11, and 3.3.x through 3.3.6 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin World Travel Information Cross-Site Scripting (1.0.0)
OpenSSL Access of Resource Using Incompatible Type ('Type Confusion') Vulnerability (CVE-2023-0286)
Oracle Database Server CVE-2009-1007 Vulnerability (CVE-2009-1007)
WordPress Plugin Meks Flexible Shortcodes Cross-Site Scripting (1.3.4)
PostgreSQL Improper Authentication Vulnerability (CVE-2009-3231)