Description

Cross-site scripting (XSS) vulnerability in the registration page in e107, probably 1.0.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2012-3843

Related Vulnerabilities

PrestaShop Improper Privilege Management Vulnerability (CVE-2023-43663)

WordPress 3.8.x Same Origin Method Execution (SOME) Vulnerability (3.8 - 3.8.13)

Oracle JRE CVE-2013-5849 Vulnerability (CVE-2013-5849)

WordPress CVE-2016-5839 Vulnerability (CVE-2016-5839)

e107 Other Vulnerability (CVE-2010-2098)

Severity

Medium

Classification

CVE-2012-3843 CWE-707

Tags

Missing Update Known Vulnerabilities