Description

Cross-site scripting (XSS) vulnerability in user.php in e107 allows remote attackers to inject arbitrary web script or HTML via the (1) URL, (2) MSN, or (3) AIM fields.

Remediation

References

CVE-2004-2031

Related Vulnerabilities

MySQL CVE-2013-1570 Vulnerability (CVE-2013-1570)

Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-4223)

WordPress Plugin Facebook, Twitter & Google+ Social Widgets Multiple Vulnerabilities (1.3.7)

WordPress Plugin WP Responsive Testimonials Slider And Widget Cross-Site Scripting (1.5)

WordPress Plugin Easy Digital Downloads-Simple eCommerce for Selling Digital Files Unspecified Vulnerability (2.4.9)

Severity

Medium

Classification

CVE-2004-2031

Tags

Missing Update Known Vulnerabilities