RSS   Vulnerabilities for 'Magnolia form module'   RSS

2013-08-09
 
CVE-2013-4759

CWE-79
 

 
Multiple cross-site scripting (XSS) vulnerabilities in the Magnolia Form module 1.x before 1.4.7 and 2.x before 2.0.2 for Magnolia CMS allow remote attackers to inject arbitrary web script or HTML via the (1) username, (2) fullname, or (3) email parameter to magnoliaPublic/demo-project/members-area/registration.html.

 

 >>> Vendor: Magnolia-cms 2 Products
Magnolia form module
Magnolia cms


Copyright 2024, cxsecurity.com

 

Back to Top