Description
Cross-site scripting (XSS) vulnerability in safe_html.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users with permissions to edit content to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin SEO Redirection-301 Redirect Manager Cross-Site Request Forgery (8.9)
WordPress Plugin Visual Form Builder Multiple Cross-Site Scripting Vulnerabilities (2.8.6)
WordPress Plugin Frontend Uploader Cross-Site Scripting (0.9.2)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5272)