Vulnerabilities > Nikola Posa > Webfoliocms > 1.0.9
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-09-17 | CVE-2012-1899 | Cross-Site Scripting vulnerability in Nikola Posa Webfoliocms Multiple cross-site scripting (XSS) vulnerabilities in webfolio/admin/users/edit in Webfolio CMS 1.1.4 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) First name, (2) Last name or (3) Email (required) fields. | 4.3 |