Description

Cross-site scripting (XSS) vulnerability in the registration page in e107, probably 1.0.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2012-3843

Related Vulnerabilities

WordPress Plugin Canto Multiple Server-Side Request Forgery Vulnerabilities (1.7.0)

MySQL CVE-2020-2579 Vulnerability (CVE-2020-2579)

IBM RTC Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-29844)

WordPress Plugin WP Cerber Security, Anti-spam & Malware Scan Cross-Site Request Forgery (2.7.2)

Plone CMS Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2012-5507)

Severity

Medium

Classification

CVE-2012-3843 CWE-707

Tags

Missing Update Known Vulnerabilities