Description

Cross-site scripting (XSS) vulnerability in blogs/blog1.php in b2evolution 4.1.3 allows remote attackers to inject arbitrary web script or HTML via the message body.

Remediation

References

CVE-2012-5911

Related Vulnerabilities

MySQL CVE-2013-3806 Vulnerability (CVE-2013-3806)

WordPress Plugin Image Optimizer by 10web-Image Optimizer and Compression Multiple Vulnerabilities (1.0.26)

WordPress Plugin Appointment Booking Calendar-BirchPress Scheduler Unspecified Vulnerability (1.13.0)

Oracle JRE CVE-2023-22045 Vulnerability (CVE-2023-22045)

Python Use After Free Vulnerability (CVE-2022-48560)

Severity

Medium

Classification

CVE-2012-5911 CWE-707

Tags

Missing Update Known Vulnerabilities