Description

Cross-site scripting (XSS) vulnerability in the administrative interface in Dotclear before 2.1.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2009-0933

Related Vulnerabilities

WordPress Plugin Tickera-WordPress Event Ticketing Unspecified Vulnerability (3.4.6.7)

WordPress Plugin Page Builder:PageLayer-Drag and Drop website builder Cross-Site Request Forgery (1.1.1)

WordPress Plugin Easy Custom Sidebars Unspecified Vulnerability (1.0.1)

MySQL CVE-2016-0662 Vulnerability (CVE-2016-0662)

WordPress Plugin Two Way CHAT-Send or receive messages to your user Multiple Vulnerabilities (3.1.4)

Severity

Medium

Classification

CVE-2009-0933 CWE-707

Tags

Missing Update Known Vulnerabilities