Cross-site scripting (XSS) vulnerability in Chatbox Plugin 1.0 in e107 0.7.2 allows remote malicious users to inject arbitrary HTML or web script via a Chatbox, as demonstrated using a SCRIPT element.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
e107 chatbox plugin 1.0 |
||
e107 e107 0.7.2 |