Subtextproject » Subtext : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in Subtext 2.0 allows remote attackers to inject arbitrary web script or HTML via a comment, related to "the feature which converts URLs to anchor tags."
Max CVSS
4.3
EPSS Score
0.25%
Published
2009-02-25
Updated
2017-08-17
1 vulnerabilities found