Packagist (Composer) package
zf-commons/zfc-user
pkg:composer/zf-commons/zfc-user
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-1039 | — | < 1.2.2 | 1.2.2 | Jan 15, 2015 | Cross-site scripting (XSS) vulnerability in user/login.phtml in ZF-Commons ZfcUser before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter. |
- CVE-2015-1039Jan 15, 2015affected < 1.2.2fixed 1.2.2
Cross-site scripting (XSS) vulnerability in user/login.phtml in ZF-Commons ZfcUser before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter.