Vulnerabilities > Webtrees > Medium

DATE CVE VULNERABILITY TITLE RISK
2015-01-13 CVE-2014-100006 Cross-site Scripting vulnerability in Webtrees 1.5.1
Multiple cross-site scripting (XSS) vulnerabilities in modules_v3/googlemap/wt_v3_street_view.php in webtrees before 1.5.2 allow remote attackers to inject arbitrary web script or HTML via the (1) map, (2) streetview, or (3) reset parameter.
network
webtrees CWE-79
4.3
4.3