Cross-site scripting (XSS) vulnerability in Apache Roller 2.3, 3.0, 3.1, and 4.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter in a search action.
Max CVSS
4.3
EPSS Score
0.59%
Published
2009-07-30
Updated
2009-07-31
1 vulnerabilities found