4 matches found
CVE-2012-1036
Cross-site scripting XSS vulnerability in the telerik HTML editor in DotNetNuke before 5.6.4 and 6.x before 6.1.0 allows remote attackers to inject arbitrary web script or HTML via a message...
CVE-2012-1036
Cross-site scripting XSS vulnerability in the telerik HTML editor in DotNetNuke before 5.6.4 and 6.x before 6.1.0 allows remote attackers to inject arbitrary web script or HTML via a message...
CVE-2012-1036
CVE-2012-1036 is an XSS vulnerability in DotNetNuke's Telerik HTML editor prior to 5.6.4 and 6.x prior to 6.1.0. The issue, triggered by specially crafted HTML/JavaScript in messages, could allow remote attackers to inject arbitrary script or HTML. Impact is explained as cross-site scripting with...
Vulnerability in DotNetNuke Could Allow Arbitrary Script Execution
Executive Summary Microsoft is providing notification of the discovery and remediation of a vulnerability affecting DotNetNuke 6.0.2 and earlier versions. Microsoft discovered and disclosed the vulnerability under coordinated vulnerability disclosure to the affected vendor, DotNetNuke. DotNetNuke...