3 matches found
CVE-2015-5520
Cross-site scripting XSS vulnerability in the Users module in Orchard 1.7.3 through 1.8.2 and 1.9.x before 1.9.1 allows remote attackers to inject arbitrary web script or HTML via the username when creating a new user account, which is not properly handled when deleting an account...
CVE-2015-5520
CVE-2015-5520 is an XSS vulnerability in Orchard CMS. The Users module on Orchard versions 1.7.3–1.8.2 and 1.9.x prior to 1.9.1 allows remote attackers to inject arbitrary script or HTML via the username when creating a new user account, with the issue not being properly handled during account de...
CVE-2015-5520
Cross-site scripting XSS vulnerability in the Users module in Orchard 1.7.3 through 1.8.2 and 1.9.x before 1.9.1 allows remote attackers to inject arbitrary web script or HTML via the username when creating a new user account, which is not properly handled when deleting an account...