3 matches found
CVE-2013-7062
Multiple cross-site scripting XSS vulnerabilities in Zope, as used in Plone 3.3.x through 3.3.6, 4.0.x through 4.0.9, 4.1.x through 4.1.6, 4.2.x through 4.2.7, and 4.3 through 4.3.2, allow remote attackers to inject arbitrary web script or HTML via unspecified input in the 1 browseridmanager or 2...
CVE-2013-7062
Multiple cross-site scripting XSS vulnerabilities in Zope, as used in Plone 3.3.x through 3.3.6, 4.0.x through 4.0.9, 4.1.x through 4.1.6, 4.2.x through 4.2.7, and 4.3 through 4.3.2, allow remote attackers to inject arbitrary web script or HTML via unspecified input in the 1 browseridmanager or 2...
CVE-2013-7062
CVE-2013-7062 concerns multiple cross-site scripting (XSS) vulnerabilities in Zope used by Plone 3.3.x–3.3.6, 4.0.x–4.0.9, 4.1.x–4.1.6, 4.2.x–4.2.7, and 4.3–4.3.2. The issue arises from input that is not properly filtered in two components: (1) browser_id_manager and (2) OFS.Image, enabling remot...