2 matches found
CVE-2011-5269
Cross-site scripting XSS vulnerability in ProjectForge before 3.5.3 allows remote authenticated users to inject arbitrary web script or HTML via a validation message...
CVE-2011-5269
CVE-2011-5269 affects ProjectForge prior to 3.5.3, where remote authenticated users can inject arbitrary web script or HTML through a validation message (XSS). The issue arises in the validation/message handling, enabling script execution in an authenticated user’s context. No exploitation detail...