Multiple cross-site scripting (XSS) vulnerabilities in Vision Source 0.6 and earlier allow remote attackers to inject arbitrary web script or HTML via the fields in a users profile.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Vision_source_cms |
Vision_source |
* |
0.6 (including) |
References