WEB APPLICATION VULNERABILITIES Standard & Premium

Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5316)

Description

Cross-site scripting (XSS) vulnerability in Dotclear before 2.6.4 allows remote attackers to inject arbitrary web script or HTML via a crafted page.

Remediation

References

Related Vulnerabilities

WordPress Plugin XCloner-Backup and Restore Multiple Vulnerabilities (3.1.2)

ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-38040)

WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (1.2.05.20)

MySQL CVE-2018-3084 Vulnerability (CVE-2018-3084)

Zope Web Application Server Resource Management Errors Vulnerability (CVE-2008-5102)

Severity

Medium

Classification

CVE-2014-5316 CWE-707

Tags

Missing Update Known Vulnerabilities