CVE-2012-0976

Publication date

2012-02-02 17:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in admin/EditForm in SilverStripe 2.4.6 allows remote authenticated users with Content Authors privileges to inject arbitrary web script or HTML via the Title parameter. NOTE: some of these details are obtained from third party information.