Apache Roller before 5.0.1 - Multiple Cross-Site Scripting (XSS) Vulnerabilities

Apache Roller before 5.0.1 - Multiple Cross-Site Scripting (XSS) Vulnerabilities

CVE-2012-2381 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in Apache Roller before 5.0.1 allow remote authenticated users to inject arbitrary web script or HTML by leveraging the blogger role.

Learn more about our Cis Benchmark Audit For Apache Http Server.