2 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in templates/1/login.php in phpCommunity 2 2.1.8 allows remote attackers to inject arbitrary web script or HTML via the msg parameter...
CVE-2009-4885
CVE-2009-4885 is a Cross-site Scripting (XSS) vulnerability in phpCommunity 2, version 2.1.8, affecting templates/1/login.php. An attacker can inject arbitrary script/HTML via the msg parameter. CVSS v2 base score: 4.3 (Medium); impact is limited to partial integrity due to user-supplied content,...