Vulnerabilities > B2Evolution > B2Evolution > 1.8.6
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-01-11 | CVE-2007-0175 | Cross-Site Scripting vulnerability in B2Evolution 1.8.2/1.8.5/1.8.6 Cross-site scripting (XSS) vulnerability in htsrv/login.php in b2evolution 1.8.6 allows remote attackers to inject arbitrary web script or HTML via scriptable attributes in the redirect_to parameter. | 4.3 |