Description
Cross-site scripting (XSS) vulnerability in Vanilla Forums before 2.0.17.6 allows remote attackers to inject arbitrary web script or HTML via the p parameter to an unspecified component, a different vulnerability than CVE-2011-0526.
Remediation
References
Related Vulnerabilities
Oracle HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2022-25313)
Plone CMS CVE-2024-23756 Vulnerability (CVE-2024-23756)
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (1.2.28)
WordPress Plugin Advanced Dynamic Pricing for WooCommerce Cross-Site Request Forgery (4.1.3)
WordPress Plugin WP Maps-Display Google Maps Perfectly with Ease SQL Injection (4.0.4)