Vulnerabilities > Clausmuus > Spitfire > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-01-01 | CVE-2011-5303 | Cross-site Scripting vulnerability in Clausmuus Spitfire 1.0436 Cross-site scripting (XSS) vulnerability in Spitfire CMS 1.0.436 allows remote attackers to inject arbitrary web script or HTML via a cms_username cookie. | 4.3 |