Description
Cross-site scripting (XSS) vulnerability in the Users module in Zikula before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: it is possible that this overlaps CVE-2011-0535.
Remediation
References
Related Vulnerabilities
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-11589)
Oracle Database Server CVE-2012-1751 Vulnerability (CVE-2012-1751)
WordPress Plugin Photoswipe Masonry Gallery Cross-Site Scripting (1.2.14)
WordPress Plugin WP PRO Advertising System-All In One Ad Manager SQL Injection (4.6.18)
WordPress Plugin Xllentech English Islamic Calendar SQL Injection (2.6.7)