CVE-2012-1069

2012-02-1417:00:00

mitre

www.cve.org

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

57.2%

JSON

Cross-site scripting (XSS) vulnerability in module/kb/search_word in the search module in lknSupport allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.

References

dl.packetstormsecurity.net/1202-exploits/iknsupport-xss.txt

www.securityfocus.com/bid/51803

exchange.xforce.ibmcloud.com/vulnerabilities/72926