CVE-2012-1781
Socialcms - XSS
Title source: ruleDescription
Multiple cross-site scripting (XSS) vulnerabilities in ajax/commentajax.php in SocialCMS 1.0.5 allow remote attackers to inject arbitrary web script or HTML via the (1) TREF_email_address or (2) TR_name parameters.
References (5)
Scores
EPSS
0.0033
EPSS Percentile
55.5%
Classification
CWE
CWE-79
Status
published
Affected Products (2)
socialcms/socialcms
n/a/n/a
Timeline
Published
Mar 19, 2012
Tracked Since
Feb 18, 2026