CVE-2011-1670

2011-04-10T02:51:00
ID CVE-2011-1670
Type cve
Reporter cve@mitre.org
Modified 2018-10-09T19:31:00

Description

Cross-site scripting (XSS) vulnerability in actions/add.php in InTerra Blog Machine 1.84, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the subject parameter to post_url/edit.