CVE-2011-0526
08.02.2011, 21:00
Cross-site scripting (XSS) vulnerability in index.php in Vanilla Forums before 2.0.17 allows remote attackers to inject arbitrary web script or HTML via the Target parameter in a /entry/signin action.
Vendor | Product | Version |
---|---|---|
vanillaforums | vanilla | 𝑥 ≤ 2.0.16 |
vanillaforums | vanilla | 2.0.9 |
vanillaforums | vanilla | 2.0.10 |
vanillaforums | vanilla | 2.0.11 |
vanillaforums | vanilla | 2.0.12 |
vanillaforums | vanilla | 2.0.13 |
vanillaforums | vanilla | 2.0.14 |
vanillaforums | vanilla | 2.0.15 |
𝑥
= Vulnerable software versions
References