Description

Cross-site scripting (XSS) vulnerability in concrete5 Japanese 5.5.1 through 5.5.2.1 and concrete5 English 5.5.0 through 5.6.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2012-5181

Related Vulnerabilities

MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5908)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-4403)

WordPress Plugin Ultimate Responsive Image Slider Unspecified Vulnerability (3.3.2)

WordPress 2.8 Multiple Existing/Non-Existing Username Enumeration Weaknesses (0.6.2 - 2.8)

ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-7370)

Severity

Medium

Classification

CVE-2012-5181 CWE-707

Tags

Missing Update Known Vulnerabilities