Lucene search
PRIOn knowledge basePRION:CVE-2017-1000431HistoryJan 02, 2018 - 8:29 p.m.
Design/Logic Flaw
2018-01-0220:29:00
PRIOn knowledge base
www.prio-n.com
4
eZ Systems eZ Publish version 5.4.0 to 5.4.9, and 5.3.12 and older, is vulnerable to an XSS issue in the search module, resulting in a risk of attackers injecting scripts which may e.g. steal authentication credentials.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ez_publish | ge | 5.4.0 | |
| ez_publish | le | 5.4.9 | |
| ez_publish | le | 5.3.12 |
Related
nvd
nvd
CVE-2017-1000431
2018-01-02 20:29:00
cvelist
cvelist
CVE-2017-1000431
2022-10-03 16:23:10
cve
cve
CVE-2017-1000431
2022-10-03 16:23:10
osv
osv
eZ Publish Cross-site Scripting (XSS) vulnerability
2022-05-14 03:49:37
github
github
eZ Publish Cross-site Scripting (XSS) vulnerability
2022-05-14 03:49:37
friendsofphp
friendsofphp
EZSA-2017-005 XSS issue in search
2017-05-26 15:23:00