Description
Cross-site scripting (XSS) vulnerability in index.php in Vanilla Forums before 2.0.17 allows remote attackers to inject arbitrary web script or HTML via the Target parameter in a /entry/signin action.
Remediation
References
Related Vulnerabilities
Java Denial of Service (DoS) Vulnerability (CVE-2018-3180)
WordPress Plugin AppPresser-Mobile App Framework Cross-Site Scripting (1.1.4)
WordPress Plugin Secure Copy Content Protection and Content Locking SQL Injection (2.6.6)
WordPress Plugin Save Contact Form 7 SQL Injection (1.7)
WordPress Plugin WordPress Download Manager Remote Code Execution (2.7.4)