2 matches found
CVE-2013-4795
Cross-site scripting XSS vulnerability in the Submitters list in Review Board 1.6.x before 1.6.18 and 1.7.x before 1.7.12 allows remote attackers to inject arbitrary web script or HTML via a user full name...
CVE-2013-4795
CVE-2013-4795 describes a cross-site scripting (XSS) vulnerability in the Submitters list of Review Board. The issue affects Review Board 1.6.x before 1.6.18 and 1.7.x before 1.7.12, allowing remote attackers to inject arbitrary script/HTML via a user’s full name. The root cause is unsanitized us...