5.8 Medium
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
76.1%
Cross-site scripting (XSS) vulnerability in search.php in AR Web Content Manager (AWCM) 2.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the search parameter.
secpod.org/advisories/SECPOD_AWCM_XSS.txt
securityreason.com/securityalert/8193
www.securityfocus.com/archive/1/517294/100/0/threaded
www.securityfocus.com/bid/47126
exchange.xforce.ibmcloud.com/vulnerabilities/66536