4 matches found
HTML Purifier Cross-site Scripting vulnerability
Cross-site scripting XSS vulnerability in smoketests/configForm.php in HTML Purifier before 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "unescaped printr output."...
Cross site scripting
Cross-site scripting XSS vulnerability in smoketests/configForm.php in HTML Purifier before 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "unescaped printr output."...
CVE-2007-3498
Cross-site scripting XSS vulnerability in smoketests/configForm.php in HTML Purifier before 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "unescaped printr output."...
CVE-2007-3498
The CVE concerns HTML Purifier prior to 2.0.1, specifically a cross-site scripting (XSS) issue in smoketests/configForm.php. The root cause is an unescaped print_r output, enabling remote attackers to inject arbitrary web script or HTML via unspecified vectors. Affected software is the HTML Purif...