Cross-site scripting (XSS) vulnerability in plugins/markdown_plugin/_markdown.plugin.php in b2evolution prior to 6.8.5 allows remote authenticated users to inject arbitrary web script or HTML via a javascript: URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
b2evolution b2evolution |