CVE-2012-1066

2012-02-1417:00:00

mitre

www.cve.org

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

57.6%

JSON

Cross-site scripting (XSS) vulnerability in the template module in SmartyCMS 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the title bar.

References

dl.packetstormsecurity.net/1202-exploits/smartycms-xss.txt

www.securityfocus.com/bid/51805

exchange.xforce.ibmcloud.com/vulnerabilities/72918