CVE-2011-0909
08.02.2011, 21:00
Cross-site scripting (XSS) vulnerability in Vanilla Forums before 2.0.17.6 allows remote attackers to inject arbitrary web script or HTML via the p parameter to an unspecified component, a different vulnerability than CVE-2011-0526.
Vendor | Product | Version |
---|---|---|
vanillaforums | vanilla | 𝑥 ≤ 2.0.17.5 |
vanillaforums | vanilla | 2.0.9 |
vanillaforums | vanilla | 2.0.10 |
vanillaforums | vanilla | 2.0.11 |
vanillaforums | vanilla | 2.0.12 |
vanillaforums | vanilla | 2.0.13 |
vanillaforums | vanilla | 2.0.14 |
vanillaforums | vanilla | 2.0.15 |
vanillaforums | vanilla | 2.0.16 |
vanillaforums | vanilla | 2.0.17 |
vanillaforums | vanilla | 2.0.17.1 |
vanillaforums | vanilla | 2.0.17.2 |
vanillaforums | vanilla | 2.0.17.3 |
vanillaforums | vanilla | 2.0.17.4 |
𝑥
= Vulnerable software versions