Vulnerabilities (CVE)

Filtered by vendor Mollify Subscribe
Filtered by product Mollify
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-3462 1 Mollify 1 Mollify 2023-12-10 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in backend/plugin/Registration/index.php in Mollify 1.6, 1.6.5.5, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the confirm parameter. NOTE: some of these details are obtained from third party information.