Cross-site scripting (XSS) vulnerability in Meridio Document and Records Management before 4.3 SR1 allows remote authenticated users to inject arbitrary web script or HTML via the Title field in a (1) document (subGeneralProps:dmpvDocTitle:PROP_W_title) or (2) container (subGeneralProps:dmpvContainerTitle:PROP_W_title).
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2009-09-14T14:00:00
Updated: 2017-08-16T14:57:01
Reserved: 2009-09-14T00:00:00
Link: CVE-2008-7231
JSON object: View
NVD Information
Status : Modified
Published: 2009-09-14T14:30:00.467
Modified: 2017-08-17T01:29:54.007
Link: CVE-2008-7231
JSON object: View
Redhat Information
No data.
CWE