Multiple cross-site scripting (XSS) vulnerabilities in ajax/commentajax.php in SocialCMS 1.0.5 allow remote malicious users to inject arbitrary web script or HTML via the (1) TREF_email_address or (2) TR_name parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
socialcms socialcms 1.0.5 |