4 matches found
CVE-2011-3978
Multiple cross-site scripting XSS vulnerabilities in LightNEasy.php in LightNEasy 3.2.4 allow remote authenticated users to inject arbitrary web script or HTML via the 1 commentemail, 2 commentmessage, or 3 commentname parameter in a sendcomment action for the news page...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in LightNEasy.php in LightNEasy 3.2.4 allow remote authenticated users to inject arbitrary web script or HTML via the 1 commentemail, 2 commentmessage, or 3 commentname parameter in a sendcomment action for the news page...
CVE-2011-3978
Multiple cross-site scripting XSS vulnerabilities in LightNEasy.php in LightNEasy 3.2.4 allow remote authenticated users to inject arbitrary web script or HTML via the 1 commentemail, 2 commentmessage, or 3 commentname parameter in a sendcomment action for the news page...
CVE-2011-3978
CVE-2011-3978 concerns multiple XSS vulnerabilities in LightNEasy.php (LightNEasy 3.2.4). The issue allows remote authenticated users to inject arbitrary web script or HTML via the parameters in a sendcomment action on the news page, specifically: (1) commentemail, (2) commentmessage, and (3) com...