3 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the Magnolia Form module 1.x before 1.4.7 and 2.x before 2.0.2 for Magnolia CMS allow remote attackers to inject arbitrary web script or HTML via the 1 username, 2 fullname, or 3 email parameter to...
CVE-2013-4759
Multiple cross-site scripting XSS vulnerabilities in the Magnolia Form module 1.x before 1.4.7 and 2.x before 2.0.2 for Magnolia CMS allow remote attackers to inject arbitrary web script or HTML via the 1 username, 2 fullname, or 3 email parameter to...
CVE-2013-4759
The CVE-2013-4759 entry describes Cross-Site Scripting (XSS) in Magnolia CMS, specifically in the Magnolia Form module. Affected are Magnolia Form module versions 1.x before 1.4.7 and 2.x before 2.0.2, where insufficient sanitisation of user-supplied data in the username, fullname, and email para...