CVE-2012-2099

CVE-2012-2099 concerns Wikidforum 2.10 with multiple cross-site scripting (XSS) vulnerabilities. The issue allows remote attackers to inject arbitrary web script or HTML via the advanced search interface: (1) search field, (2) Author, or (3) select_sort parameters. The NVD entry lists a Medium se...