CVE-2012-6720

Posted on by admin

CVE-2012-6720

Multiple cross-site scripting (XSS) vulnerabilities in SocialEngine before 4.2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) title parameter to music/create, (2) location parameter to events/create, or (3) search parameter to widget/index/content_id/*.

Source: CVE-2012-6720

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다