CVE-2015-5651
NONE EPSS 64.7%
Published Oct 3, 201510y ago · Modified Jun 17, 20262w ago
Published Oct 3, 2015 10y ago
Last Modified Jun 17, 2026 2w ago
Description
Cross-site scripting (XSS) vulnerability in Dotclear before 2.8.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Threat Intelligence
EPSS Exploit Probability
64.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-79 Cross-site Scripting Injection
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| dotclear | dotclear | * | ≤2.8.0 |
References 3
- dotclear.org http://dotclear.org/blog/post/2015/09/23/Dotclear-2.8.1
- jvn.jp http://jvn.jp/en/jp/JVN65668004/index.html
- jvndb.jvn.jp http://jvndb.jvn.jp/jvndb/JVNDB-2015-000148
Remediation
- dotclear.org http://dotclear.org/blog/post/2015/09/23/Dotclear-2.8.1