5.6 Medium
AI Score
Confidence
High
0.007 Low
EPSS
Percentile
80.7%
Cross-site scripting (XSS) vulnerability in KnowledgeTree Open Source 3.4 and 3.4.1 allows remote attackers to inject arbitrary web script or HTML via the login field on the login page, and other unspecified vectors.
osvdb.org/36579
secunia.com/advisories/26333
sourceforge.net/forum/forum.php?forum_id=722865
sourceforge.net/project/shownotes.php?release_id=530698&group_id=107851
support.ktdms.com/browse/KTS-2178
www.securityfocus.com/bid/25231
www.vupen.com/english/advisories/2007/2812