Description

Cross-site scripting (XSS) vulnerability in e107 0.7.22 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2011-0457

Related Vulnerabilities

Craft CMS Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-36260)

XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-34467)

WordPress 4.1.x Same Origin Method Execution (SOME) Vulnerability (4.1 - 4.1.10)

Squid Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-3948)

WordPress Plugin Duplicate Page and Post SQL Injection (2.5.6)

Severity

Medium

Classification

CVE-2011-0457 CWE-707

Tags

Missing Update Known Vulnerabilities