CVE-2011-1150: Cross-site Scripting

February 5, 2020 (updated February 6, 2020)

bbPress is vulnerable to XSS through the /bb-login.php url via the re parameter.

References

nvd.nist.gov/vuln/detail/CVE-2011-1150

Detect and mitigate CVE-2011-1150 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →