Description
Cross-site scripting (XSS) vulnerability in ZMI pages that use the manage_tabs_message in Zope 2.11.4, 2.11.2, 2.10.9, 2.10.7, 2.10.6, 2.10.5, 2.10.4, 2.10.2, 2.10.1, 2.12.
Remediation
References
Related Vulnerabilities
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-9788)
WordPress Plugin Neuvoo Jobs Cross-Site Scripting (2.0)
WordPress Plugin Font Awesome Information Disclosure (4.0.0-rc16)
Ruby Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2011-1004)