Cross-site scripting (XSS) vulnerability in the Contact module in Exponent CMS 0.97-GA20090213 allows remote attackers to inject arbitrary web script or HTML via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CPE | Name | Operator | Version |
---|---|---|---|
exponent_cms | eq | 0.97.0-ga20090213 |