VULHUB ™

eZ publish may allow malicious HTML and script code contained in requests to be logged. When an administrative user views this information through eZ publish, the hostile HTML and script code could be interpreted in their browser. This could allow for compromise of cookie-based credentials or other possible attacks. This issue was reported in eZ publish 2.2.7. Other versions may also be affected.

eZ publish may allow malicious HTML and script code contained in requests to be logged. When an administrative user views this information through eZ publish, the hostile HTML and script code could be interpreted in their browser. This could allow for compromise of cookie-based credentials or other possible attacks. This issue was reported in eZ publish 2.2.7. Other versions may also be affected.