CVE-2013-4753
CVE-2013-4753 affects Claroline 1.11.9 and earlier. The vulnerability is multiple XSS flaws triggered by user input in three fields: (1) Search in inbox (messaging/messagebox.php), (2) First name in auth/profile.php, (3) Speakers in rqAdd action (calendar/agenda.php). The root cause is improper h...