Description

Multiple cross-site scripting (XSS) vulnerabilities in Vanilla Forums before 2.0.18.13 and 2.1.x before 2.1.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2014-9685

Related Vulnerabilities

Joomla Missing Authorization Vulnerability (CVE-2021-23123)

WordPress 5.0.x Multiple Vulnerabilities (5.0 - 5.0.17)

Django Resource Management Errors Vulnerability (CVE-2014-0474)

CKEditor Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2021-26271)

WordPress Plugin Related Posts Multiple Cross-Site Request Forgery Vulnerabilities (1.0)

Severity

Medium

Classification

CVE-2014-9685 CWE-707

Tags

Missing Update Known Vulnerabilities