Lucene search
MitreCVELIST:CVE-2014-9446HistoryJan 02, 2015 - 8:00 p.m.
CVE-2014-9446
2015-01-0220:00:00
mitre
www.cve.org
4
cross-site scripting
koha
remote attackers
arbitrary web script
html
opac parameter
intranet parameter
catalogue
cve-2014-9446
Multiple cross-site scripting (XSS) vulnerabilities in the Staff client in Koha before 3.16.6 and 3.18.x before 3.18.2 allow remote attackers to inject arbitrary web script or HTML via the sort_by parameter to the (1) opac parameter in opac-search.pl or (2) intranet parameter in catalogue/search.pl.
Related
prion
prion
Cross site scripting
2015-01-02 20:59:00
openvas
openvas
Koha < 3.16.6, 3.18.x < 3.18.2 Multiple XSS Vulnerabilities - Active Check
2015-03-27 00:00:00
nvd
nvd
CVE-2014-9446
2015-01-02 20:59:04
cve
cve
CVE-2014-9446
2015-01-02 20:59:04