2 matches found
CVE-2014-5316
Cross-site scripting XSS vulnerability in Dotclear before 2.6.4 allows remote attackers to inject arbitrary web script or HTML via a crafted page...
CVE-2014-5316
Dotclear contains a cross-site scripting (XSS) vulnerability (CVE-2014-5316) affecting Dotclear versions prior to 2.6.4. The flaw allows remote attackers to inject arbitrary web script/HTML via a crafted page, potentially executing code in the browser of a logged-in user when they view the page. ...