2 matches found
CVE-2016-6523
Multiple cross-site scripting XSS vulnerabilities in the media manager in Dotclear before 2.10 allow remote attackers to inject arbitrary web script or HTML via the 1 q or 2 linktype parameter to admin/media.php...
CVE-2016-6523
CVE-2016-6523 describes multiple cross-site scripting (XSS) vulnerabilities in the Dotclear media manager prior to version 2.10. The issue allows remote attackers to inject arbitrary web script or HTML by supplying crafted values to the parameters (1) q or (2) link_type in admin/media.php. The NV...