Description
Multiple stored XSS in Vanilla Forums before 2.5 allow remote attackers to inject arbitrary JavaScript code into any message on forum.
Remediation
References
Related Vulnerabilities
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0703)
WordPress Plugin Titan Framework Cross-Site Scripting (1.5.2)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-3181)
Internet Information Services Other Vulnerability (CVE-2000-0770)