Description
Cross-site scripting (XSS) vulnerability in ZMI pages that use the manage_tabs_message in Zope 2.11.4, 2.11.2, 2.10.9, 2.10.7, 2.10.6, 2.10.5, 2.10.4, 2.10.2, 2.10.1, 2.12.
Remediation
References
Related Vulnerabilities
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29211)
WordPress Plugin WP Symposium Cross-Site Scripting (13.02)
WordPress Plugin Premium Addons for Elementor Security Bypass (4.5.1)
WordPress Plugin Ivory Search-WordPress Search Multiple Cross-Site Scripting Vulnerabilities (5.4)
TYPO3 Improper Input Validation Vulnerability (CVE-2011-4904)