Description
Cross-site scripting (XSS) vulnerability in ecrire/tools.php in DotClear 1.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified form fields on the blogroll page.
Remediation
References
Related Vulnerabilities
WordPress Plugin Navis DocumentCloud Cross-Site Scripting (0.1)
WordPress Plugin Batch-Move Posts Unspecified Vulnerability (1.5)
WordPress 5.6.x Multiple Vulnerabilities (5.6 - 5.6.2)
Python Integer Overflow or Wraparound Vulnerability (CVE-2008-4864)
WordPress Plugin Recart-The New GhostMonitor Unspecified Vulnerability (1.5.0)