3 matches found
CVE-2018-5689
Cross-site scripting XSS vulnerability in admin/auth.php in Dotclear 2.12.1 allows remote authenticated users to inject arbitrary web script or HTML via the malicious user's email...
CVE-2018-5689
Cross-site scripting XSS vulnerability in admin/auth.php in Dotclear 2.12.1 allows remote authenticated users to inject arbitrary web script or HTML via the malicious user's email...
CVE-2018-5689
CVE-2018-5689 affects Dotclear 2.12.1, specifically the admin/auth.php vulnerability. The issue is a Cross-site Scripting (XSS) flaw in which remote authenticated users can inject arbitrary web script or HTML via the malicious user’s email. The root cause, impacted component, and context are stat...