Total vulnerabilities in the database
Cross-site scripting (XSS) vulnerability in PortalTransforms in Plone 2.1 through 3.3.4 before hotfix 20100612 allows remote attackers to inject arbitrary web script or HTML via the safe_html transform.
| Software | From | Fixed in |
|---|---|---|
| plone / plone | 3.3 | 3.3.x |
| plone / plone | 3.0.1 | 3.0.1.x |
| plone / plone | 3.0 | 3.0.x |
| plone / plone | 3.2.3 | 3.2.3.x |
| plone / plone | 3.1.4 | 3.1.4.x |
| plone / plone | 3.1.5.1 | 3.1.5.1.x |
| plone / plone | 2.1.4 | 2.1.4.x |
| plone / plone | 3.3.5 | 3.3.5.x |
| plone / plone | 3.0.6 | 3.0.6.x |
| plone / plone | 2.5.4 | 2.5.4.x |
| plone / plone | 3.2 | 3.2.x |
| plone / plone | 3.1.1 | 3.1.1.x |
| plone / plone | 2.1.1 | 2.1.1.x |
| plone / plone | 3.3.4 | 3.3.4.x |
| plone / plone | 3.3.2 | 3.3.2.x |
| plone / plone | 3.1.7 | 3.1.7.x |
| plone / plone | 2.5.1 | 2.5.1.x |
| plone / plone | 2.5.3 | 2.5.3.x |
| plone / plone | 3.2.2 | 3.2.2.x |
| plone / plone | 2.1.2 | 2.1.2.x |
| plone / plone | 3.0.3 | 3.0.3.x |
| plone / plone | 3.3.1 | 3.3.1.x |
| plone / plone | 3.0.4 | 3.0.4.x |
| plone / plone | 3.1.2 | 3.1.2.x |
| plone / plone | 3.2.1 | 3.2.1.x |
| plone / plone | 3.0.5 | 3.0.5.x |
| plone / plone | 2.5 | 2.5.x |
| plone / plone | 2.5.2 | 2.5.2.x |
| plone / plone | 3.0.2 | 3.0.2.x |
| plone / plone | 2.1 | 2.1.x |
| plone / plone | 3.1 | 3.1.x |
| plone / plone | 3.3.3 | 3.3.3.x |
| plone / plone | 2.1.3 | 2.1.3.x |
| plone / plone | 3.1.6 | 3.1.6.x |
| plone / plone | 3.1.3 | 3.1.3.x |
| plone / plone | 2.5.5 | 2.5.5.x |