Vulnerabilities > Kent WEB > WEB Forum > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-10-24 | CVE-2011-4172 | Cross-Site Scripting vulnerability in Kent-Web web Forum Multiple cross-site scripting (XSS) vulnerabilities in KENT-WEB WEB FORUM before 5.1 allow remote attackers to inject arbitrary web script or HTML via (1) an e-mail address field or (2) a cookie, a related issue to CVE-2011-3383, CVE-2011-3983, and CVE-2011-3984. | 4.3 |
| 2011-10-24 | CVE-2011-3984 | Cross-Site Scripting vulnerability in Kent-Web web Forum Cross-site scripting (XSS) vulnerability in KENT-WEB WEB FORUM 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to "web form entries." | 4.3 |
| 2011-10-24 | CVE-2011-3983 | Cross-Site Scripting vulnerability in Kent-Web web Forum 5.1 Cross-site scripting (XSS) vulnerability in KENT-WEB WEB FORUM 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to cookies. | 4.3 |
| 2011-10-24 | CVE-2011-3383 | Cross-Site Scripting vulnerability in Kent-Web web Forum Cross-site scripting (XSS) vulnerability in KENT-WEB WEB FORUM 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to "the web page to be output." | 4.3 |