2 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in KnowledgeTree before 3.5.4a allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-4281...
CVE-2007-4281
The CVE-2007-4281 entry describes a cross-site scripting (XSS) vulnerability in KnowledgeTree Open Source versions 3.4 and 3.4.1. The issue allows remote attackers to inject arbitrary web script or HTML via the login field on the login page, and via other unspecified vectors. The provided connect...