Unrated severityNVD Advisory· Published Sep 2, 2011· Updated Jun 16, 2026
CVE-2011-3385
CVE-2011-3385
Description
Cross-site scripting (XSS) vulnerability in WebsiteBaker before 2.8, as used in LEPTON and possibly other products, allows remote attackers to inject arbitrary web script or HTML via unknown vectors, a different vulnerability than CVE-2006-2307.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- cpe:2.3:a:lepton-cms:lepton:*:*:*:*:*:*:*:*
cpe:2.3:a:websitebaker2:websitebaker:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:websitebaker2:websitebaker:*:*:*:*:*:*:*:*range: <=2.7
- cpe:2.3:a:websitebaker2:websitebaker:2.6.7:*:*:*:*:*:*:*
- (no CPE)range: <2.8
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.