Lucene search

K

MitreCVELIST:CVE-2009-2376

HistoryJul 08, 2009 - 3:00 p.m.

CVE-2009-2376

2009-07-0815:00:00

mitre

www.cve.org

3

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

70.4%

Cross-site scripting (XSS) vulnerability in the Html::textarea function in application/libraries/Html.php in TangoCMS 2.x before 2.3.0 allows remote attackers to inject arbitrary web script or HTML via the value parameter, related to the Contact module.

References

dev.tangocms.org/issues/show/140

dev.tangocms.org/repositories/diff/tangocms?rev=2372

secunia.com/advisories/35642

tangocms.org/changelog

exchange.xforce.ibmcloud.com/vulnerabilities/51432

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

70.4%

Related for CVELIST:CVE-2009-2376

nvd1 cve1 prion1