CVE-2011-4277

CourseForum ProjectForum 7.0.1.3038 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in CourseForum ProjectForum 7.0.1.3038 allows remote attackers to inject arbitrary web script or HTML via a crafted name of an object within a more object on a wiki page.

References (1)

[US Government Resource] http://www.kb.cert.org/vuls/id/901251

Scores

EPSS 0.0059

EPSS Percentile 68.9%

Classification

CWE

CWE-79

Status published

Affected Products (2)

courseforum/projectforum

n/a/n/a

Timeline

Published Nov 03, 2011

Tracked Since Feb 18, 2026