3 matches found
Secunia Research: e107 Content Management Plugin Script Insertion Vulnerability
====================================================================== Secunia Research 19/04/2010 - e107 Content Management Plugin Script Insertion Vulnerability - ====================================================================== Table of Contents Affected...
CVE-2010-0997
Cross-site scripting XSS vulnerability in 107plugins/content/contentmanager.php in the Content Management plugin in e107 before 0.7.20, when the personal content manager is enabled, allows user-assisted remote authenticated users to inject arbitrary web script or HTML via the contentheading...
CVE-2010-0997
The CVE-2010-0997 entry covers an XSS vulnerability in the e107 Content Management plugin, specifically in 107_plugins/content/content_manager.php when the Personal Content Manager is enabled. The underlying issue is insufficient sanitization of the content_heading parameter, allowing user-assist...