1 matches found
Cross-site Scripting (XSS)
rainlab/user-plugin is vulnerable to cross-site scripting XSS attacks. The vulnerability exists due to the improper use of formvalue which does not provide escaping of user input, allowing XSS to occur...
