Multiple cross-site scripting (XSS) vulnerabilities in wp-content/plugins/cforms/lib_ajax.php in cforms WordPress plugin 11.5 allow remote attackers to inject arbitrary web script or HTML via the (1) rs and (2) rsargs[] parameters.
References
Advertisement
Configurations
Configuration 1 (hide)
| AND |
|
Information
Published : 2010-11-03 06:37
Updated : 2018-10-10 13:06
NVD link : CVE-2010-3977
Mitre link : CVE-2010-3977
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Advertisement
Products Affected
deliciousdays
- cforms
wordpress
- wordpress