Lucene search
MitreCVELIST:CVE-2014-9126HistoryFeb 08, 2020 - 4:23 p.m.
CVE-2014-9126
2020-02-0816:23:29
mitre
www.cve.org
3
EPSS
0.001
Percentile
50.0%
Multiple cross-site scripting (XSS) vulnerabilities in Open-School Community Edition 2.2 allow remote attackers to inject arbitrary web script or HTML via the YII_CSRF_TOKEN HTTP cookie or the StudentDocument, StudentCategories, StudentPreviousDatas parameters to index.php.
Related
cve
cve
CVE-2014-9126
2020-02-08 17:15:11
prion
prion
Cross site scripting
2020-02-08 17:15:00
nvd
nvd
CVE-2014-9126
2020-02-08 17:15:11
packetstorm
packetstorm
OpenSchool Community Edition 2.2 XSS / Access Bypass
2015-01-25 00:00:00
zdt
zdt
OpenSchool Community Edition 2.2 XSS / Access Bypass Vulnerabilities
2015-01-27 00:00:00