Multiple cross-site scripting (XSS) vulnerabilities in the topic administration page in the Extension::MobileUI extension prior to 1.02 for Best Practical Solutions RT 3.8.x and in Best Practical Solutions RT prior to 4.0.6 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jesse_vincent extension\\ \\ |