Unrated severityNVD Advisory· Published Jan 2, 2014· Updated Jun 16, 2026
CVE-2011-5269
CVE-2011-5269
Description
Cross-site scripting (XSS) vulnerability in ProjectForge before 3.5.3 allows remote authenticated users to inject arbitrary web script or HTML via a validation message.
Affected products
8cpe:2.3:a:projectforge:projectforge:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:projectforge:projectforge:*:*:*:*:*:*:*:*range: <=3.5.2
- cpe:2.3:a:projectforge:projectforge:3.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:projectforge:projectforge:3.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:projectforge:projectforge:3.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:projectforge:projectforge:3.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:projectforge:projectforge:3.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:projectforge:projectforge:3.5.1:*:*:*:*:*:*:*
- (no CPE)range: <3.5.3
Patches
Vulnerability mechanics
References
2- www.projectforge.org/pf-en/NewsnvdVendor Advisory
- www.projectforge.org/jira/browse/PF-185nvd
News mentions
0No linked articles in our index yet.