Cross-site scripting (XSS) vulnerability in header.tpl.php in the modern template for Singapore 0.10.1 allows remote malicious users to inject arbitrary web script or HTML via the gallery parameter to default.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
modern modern 1.3.2 |
||
singapore singapore 0.10.1 |