5.7 Medium
AI Score
Confidence
High
0.007 Low
EPSS
Percentile
80.7%
Multiple cross-site scripting (XSS) vulnerabilities in KnowledgeTree before 3.5.4a allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-4281.
secunia.com/advisories/33277
wiki.knowledgetree.com/Version_3.5.4a#Security
www.securityfocus.com/bid/32920
exchange.xforce.ibmcloud.com/vulnerabilities/47529