2 matches found
CVE-2014-4195
CVE-2014-4195 describes an XSS vulnerability in ZeroCMS 1.0, where the parameter article_id in zero_view_article.php can be exploited to inject arbitrary web script or HTML. The entry (NVD, CVSS v2 base score 4.3, Medium) indicates the issue is exploitable via network with no authentication, with...
ZeroCMS 1.0 Cross Site Scripting
ZeroCMS v1.0 Cross-Site Scripting Vulnerability Vendor: Another Awesome Stuff Product web page: http://www.aas9.in/zerocms Affected version: 1.0 Severity: Medium CVE: CVE-2014-4195 Date: 20/06/2014 Discovered by: Filippos Mastrogiannis @filipposmastro ZeroCMS is a very simple Content Management...