Vulnerabilities

CVE-2013-4759

by Fred · 09/08/2013

Multiple cross-site scripting (XSS) vulnerabilities in the Magnolia Form module 1.x before 1.4.7 and 2.x before 2.0.2 for Magnolia CMS allow remote attackers to inject arbitrary web script or HTML via the (1) username, (2) fullname, or (3) email parameter to magnoliaPublic/demo-project/members-area/registration.html.

Date published : 2013-08-09

http://www.securityfocus.com/bid/61423

http://archives.neohapsis.com/archives/bugtraq/2013-07/0160.html

Similar

Tags: Cybersecurity Alert