Description

Cross-site scripting (XSS) vulnerability in kssdevel.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2012-5490

Related Vulnerabilities

WordPress Plugin Clone Cross-Site Scripting (2.1.1)

WordPress Plugin Wow Moodboard Lite Open Redirect (1.1.1.1)

WebLogic CVE-2018-2893 Vulnerability (CVE-2018-2893)

WordPress Plugin Uncanny Toolkit for LearnDash Cross-Site Request Forgery (3.6.4.1)

Internet Information Services Other Vulnerability (CVE-2000-1104)

Severity

Medium

Classification

CVE-2012-5490 CWE-707

Tags

Missing Update Known Vulnerabilities