{"id":7903,"date":"2015-11-03T22:24:22","date_gmt":"2015-11-04T05:24:22","guid":{"rendered":"https:\/\/webdev.securin.xyz\/?post_type=zerodays&#038;p=7903"},"modified":"2023-02-06T14:20:06","modified_gmt":"2023-02-06T21:20:06","slug":"cve-2015-8766-symphony","status":"publish","type":"zerodays","link":"https:\/\/10.42.32.162\/zerodays\/cve-2015-8766-symphony\/","title":{"rendered":"CVE-2015-8766 &#8211; Reflected Cross-Site Scripting in Symphony CMS"},"content":{"rendered":"<p>A cross-site scripting (XSS) attack can cause arbitrary code (javascript) to run in a user\u2019s browser while the browser is connected to a trusted web site. The application targets your application\u2019s users and not the application itself, but it uses your application as the vehicle for the attack. Stored attacks are those where the injected script is permanently stored on the target servers, such as in a database, in a message forum, visitor log, comment field, etc.<\/p>\n","protected":false},"featured_media":7904,"parent":0,"menu_order":0,"template":"","meta":{"content-type":""},"acf":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/zerodays\/7903"}],"collection":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/zerodays"}],"about":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/types\/zerodays"}],"version-history":[{"count":4,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/zerodays\/7903\/revisions"}],"predecessor-version":[{"id":13714,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/zerodays\/7903\/revisions\/13714"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/media\/7904"}],"wp:attachment":[{"href":"https:\/\/10.42.32.162\/wp-json\/wp\/v2\/media?parent=7903"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}