Cross-site scripting (XSS) vulnerability in www/help/tracker.php in GForge 4.5.14, 4.7 rc2, and 4.8.1 allows remote malicious users to inject arbitrary web script or HTML via the helpname parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gforge gforge 4.7 |
||
gforge gforge 4.5.14 |
||
gforge gforge 4.8.1 |