Description
Cross-site scripting (XSS) vulnerability in e107 0.617 and earlier allows remote attackers to inject arbitrary web script or HTML via nested [url] BBCode tags.
Remediation
References
Related Vulnerabilities
WordPress Plugin BackupBuddy Information Disclosure (2.2.28)
WordPress MU 'wp-admin/wpmu-blogs.php' Multiple Cross-Site Scripting Vulnerabilities (1.0 - 2.5.1)
Drupal Core 8.8.x Remote Code Execution (8.8.0 - 8.8.7)
Moodle Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-5153)
WordPress Plugin AdPlugg WordPress Ad Cross-Site Scripting (1.1.33)