Multiple cross-site scripting (XSS) vulnerabilities in HTMLy 2.7.4 allow remote malicious users to inject arbitrary web script or HTML via the (1) destination parameter to delete feature; the (2) destination parameter to edit feature; (3) content parameter in the profile feature.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
htmly htmly 2.7.4 |