Lucene search
PRIOn knowledge basePRION:CVE-2014-9126HistoryFeb 08, 2020 - 5:15 p.m.
Cross site scripting
2020-02-0817:15:00
PRIOn knowledge base
www.prio-n.com
4
Multiple cross-site scripting (XSS) vulnerabilities in Open-School Community Edition 2.2 allow remote attackers to inject arbitrary web script or HTML via the YII_CSRF_TOKEN HTTP cookie or the StudentDocument, StudentCategories, StudentPreviousDatas parameters to index.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| open-school | eq | 2.2 |
Related
cve
cve
CVE-2014-9126
2020-02-08 17:15:11
cvelist
cvelist
CVE-2014-9126
2020-02-08 16:23:29
nvd
nvd
CVE-2014-9126
2020-02-08 17:15:11
zdt
zdt
OpenSchool Community Edition 2.2 XSS / Access Bypass Vulnerabilities
2015-01-27 00:00:00
packetstorm
packetstorm
OpenSchool Community Edition 2.2 XSS / Access Bypass
2015-01-25 00:00:00