Description An issue was discovered in e107 v2.1.9. There is a XSS attack on e107_admin/comment.php. Remediation References CVE-2018-17423 Related Vulnerabilities MySQL CVE-2014-6469 Vulnerability (CVE-2014-6469) MySQL CVE-2021-2009 Vulnerability (CVE-2021-2009) WordPress Plugin WP-Members Membership Cross-Site Scripting (3.1.4.2) WordPress Plugin Developer Tools Arbitrary File Upload (1.1.4) PHP CVE-2013-7345 Vulnerability (CVE-2013-7345) Severity Medium Classification CVE-2018-17423 CWE-707 CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities