XSS in Symphony-cms Symphony_cms

CVE-2011-4341

Multiple SQL injection vulnerabilities in symphony/content/content.publish.php in Symphony CMS 2.2.3 and possibly other versions before 2.2.4 allow remote authenticated users with Author permissions to execute arbitrary SQL commands via th…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.029 (85.1th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References