2 matches found
CVE-2013-5320
Cross-site scripting XSS vulnerability in Forums/EditPost.aspx in mojoPortal before 2.3.9.8 allows remote attackers to inject arbitrary web script or HTML via the txtSubject parameter...
CVE-2013-5320
The CVE-2013-5320 entry describes a Cross‑site Scripting (XSS) flaw in mojoPortal (Forums/EditPost.aspx) before version 2.3.9.8. The vulnerability arises from accepting user input in the txtSubject parameter, enabling remote attackers to inject arbitrary script/HTML. Impact is typical client-side...