CVE-2011-5269

2022-10-0316:15:12

mitre

www.cve.org

cross-site scripting

projectforge

remote authenticated users

validation message

html

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.3%

JSON

Cross-site scripting (XSS) vulnerability in ProjectForge before 3.5.3 allows remote authenticated users to inject arbitrary web script or HTML via a validation message.

References

www.projectforge.org/pf-en/News

www.projectforge.org/jira/browse/PF-185